CVE-2006-1730 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-1730
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-1730

Description: Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via a large number in the CSS letter-spacing property that leads to a heap-based buffer overflow.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/25826 UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-271-1 http://www.ubuntulinux.org/support/documentation/usn/usn-276-1 http://www.ubuntulinux.org/support/documentation/usn/usn-275-1 SUSE http://lists.suse.com/archive/suse-security-announce/2006-Apr/0003.html http://www.novell.com/linux/security/advisories/2006_04_25.html SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-228526-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102550-1 ST 1015918 1015917 1015916 1015915 SREASON http://securityreason.com/securityalert/720 SGI SCO SAID Secunia Advisory: SA21622 Secunia Advisory: SA21033 Secunia Advisory: SA19746 Secunia Advisory: SA19721 Secunia Advisory: SA19714 Secunia Advisory: SA19941 Secunia Advisory: SA19950 Secunia Advisory: SA19902 Secunia Advisory: SA19863 Secunia Advisory: SA19862 Secunia Advisory: SA19852 Secunia Advisory: SA19823 Secunia Advisory: SA19811 Secunia Advisory: SA19821 Secunia Advisory: SA19794 Secunia Advisory: SA19759 Secunia Advisory: SA19649 Secunia Advisory: SA19631 Secunia Advisory: SA19696 Secunia Advisory: SA19729 Secunia Advisory: SA19780 Secunia Advisory: SA20051 Secunia Advisory: SA22065 Secunia Advisory: SA22066 REDHAT http://www.redhat.com/support/errata/RHSA-2006-0329.html http://www.redhat.com/support/errata/RHSA-2006-0330.html http://www.redhat.com/support/errata/RHSA-2006-0328.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1614 MISC http://www.zerodayinitiative.com/advisories/ZDI-06-010.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2006:075 http://www.mandriva.com/security/advisories?name=MDKSA-2006:078 http://www.mandriva.com/security/advisories?name=MDKSA-2006:076 HP http://www.securityfocus.com/archive/1/archive/1/446657/100/200/threaded http://www.securityfocus.com/archive/1/archive/1/434524/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/438730/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/446658/100/200/threaded GENTOO http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml http://www.gentoo.org/security/en/glsa/glsa-200604-12.xml FEDORA http://www.securityfocus.com/archive/1/archive/1/436338/100/0/threaded http://www.redhat.com/archives/fedora-announce-list/2006-April/msg00154.html http://www.securityfocus.com/archive/1/archive/1/436296/100/0/threaded http://www.redhat.com/archives/fedora-announce-list/2006-April/msg00153.html DEBIAN http://www.debian.org/security/2006/dsa-1044 http://www.debian.org/security/2006/dsa-1051 http://www.debian.org/security/2006/dsa-1046 CONFIRM http://www.mozilla.org/security/announce/2006/mfsa2006-22.html http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm CERT-VN 179014 CERT http://www.us-cert.gov/cas/techalerts/TA06-107A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/431060/100/0/threaded BID 17516

Return to the previous page.