CVE-2006-0293 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-0293
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-0293

Description: The function allocation code (js_NewFunction in jsfun.c) in Firefox 1.5 allows attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via user-defined methods that trigger garbage collection in a way that operates on freed objects.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/24430 http://xforce.iss.net/xforce/xfdb/42654 SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-228526-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102550-1 ST 1015570 SAID Secunia Advisory: SA22065 Secunia Advisory: SA21622 Secunia Advisory: SA19902 Secunia Advisory: SA19863 Secunia Advisory: SA19862 Secunia Advisory: SA18704 Secunia Advisory: SA18700 Secunia Advisory: SA19941 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1494 HP http://www.securityfocus.com/archive/1/archive/1/446657/100/200/threaded http://www.securityfocus.com/archive/1/archive/1/438730/100/0/threaded GENTOO http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml DEBIAN http://www.debian.org/security/2006/dsa-1044 http://www.debian.org/security/2006/dsa-1046 http://www.debian.org/security/2006/dsa-1051 CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm http://www.mozilla.org/security/announce/2006/mfsa2006-01.html BID 16476

Return to the previous page.