CVE-2006-4571

Multiple unspecified vulnerabilities in Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5 allow remote attackers to cause a denial of service (crash), corrupt memory, and possibly execute arbitrary code via unspecified vectors, some of which involve JavaScript, and possibly large images or plugin data.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.mozilla.org/security/announce/2006/mfsa2006-64.html	Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2006-0676.html	Patch Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2006-0677.html	Patch Vendor Advisory
http://secunia.com/advisories/21906	Patch Vendor Advisory
http://secunia.com/advisories/21949	Patch Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2006-0675.html
http://www.securityfocus.com/bid/20042
http://securitytracker.com/id?1016846
http://securitytracker.com/id?1016847
http://securitytracker.com/id?1016848
http://secunia.com/advisories/21915	Vendor Advisory
http://secunia.com/advisories/21916	Vendor Advisory
http://secunia.com/advisories/21939	Vendor Advisory
http://secunia.com/advisories/21940	Vendor Advisory
http://secunia.com/advisories/21950	Vendor Advisory
ftp://patches.sgi.com/support/free/security/advisories/20060901-01-P.asc
http://www.ubuntu.com/usn/usn-350-1
http://secunia.com/advisories/22036	Vendor Advisory
http://secunia.com/advisories/22001	Vendor Advisory
http://security.gentoo.org/glsa/glsa-200609-19.xml
http://www.ubuntu.com/usn/usn-351-1
http://www.ubuntu.com/usn/usn-352-1
http://www.ubuntu.com/usn/usn-354-1
http://secunia.com/advisories/22025	Vendor Advisory
http://secunia.com/advisories/22055	Vendor Advisory
http://secunia.com/advisories/22074	Vendor Advisory
http://secunia.com/advisories/22088
http://www.us.debian.org/security/2006/dsa-1191
http://security.gentoo.org/glsa/glsa-200610-01.xml
http://secunia.com/advisories/22210	Vendor Advisory
http://secunia.com/advisories/22247	Vendor Advisory
http://secunia.com/advisories/22274	Vendor Advisory
http://support.avaya.com/elmodocs2/security/ASA-2006-224.htm
http://www.debian.org/security/2006/dsa-1192
http://security.gentoo.org/glsa/glsa-200610-04.xml
http://www.ubuntu.com/usn/usn-361-1
http://secunia.com/advisories/22299	Vendor Advisory
http://secunia.com/advisories/22342	Vendor Advisory
http://secunia.com/advisories/22391	Vendor Advisory
http://secunia.com/advisories/22422	Vendor Advisory
http://www.debian.org/security/2006/dsa-1210
http://secunia.com/advisories/22849	Vendor Advisory
http://secunia.com/advisories/22056	Vendor Advisory
http://secunia.com/advisories/22195	Vendor Advisory
https://issues.rpath.com/browse/RPL-640
http://secunia.com/advisories/24711
http://www.mandriva.com/security/advisories?name=MDKSA-2006:168
http://www.mandriva.com/security/advisories?name=MDKSA-2006:169
http://secunia.com/advisories/22066
http://www.vupen.com/english/advisories/2006/3617
http://www.vupen.com/english/advisories/2006/3748
http://www.vupen.com/english/advisories/2007/1198
http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00771742
http://www.vupen.com/english/advisories/2008/0083
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11728
http://www.securityfocus.com/archive/1/446140/100/0/threaded

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:mozilla:seamonkey::::::::
	cpe:2.3:a:mozilla:thunderbird::::::::

Information

Published : 2006-09-15 12:07

Updated : 2018-10-17 14:38

NVD link : CVE-2006-4571

Mitre link : CVE-2006-4571

JSON object : View

CWE

NVD-CWE-noinfo

Products Affected

mozilla

seamonkey
thunderbird

10.0 /10