CVE-2006-0292 - CVE Reference - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

CVE Reference: CVE-2006-0292

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-0292

Description: The Javascript interpreter (jsinterp.c) in Mozilla and Firefox before 1.5.1 does not properly dereference objects, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via unknown attack vectors related to garbage collection.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/24430 UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-271-1 http://www.ubuntulinux.org/support/documentation/usn/usn-276-1 http://www.ubuntulinux.org/support/documentation/usn/usn-275-1 SUSE http://www.novell.com/linux/security/advisories/2006_04_25.html SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-102550-1 ST 1015570 SGI SCO SAID Secunia Advisory: SA19780 Secunia Advisory: SA21622 Secunia Advisory: SA21033 Secunia Advisory: SA19746 Secunia Advisory: SA19941 Secunia Advisory: SA19950 Secunia Advisory: SA19902 Secunia Advisory: SA19863 Secunia Advisory: SA19862 Secunia Advisory: SA19852 Secunia Advisory: SA19823 Secunia Advisory: SA19821 Secunia Advisory: SA19759 Secunia Advisory: SA19230 Secunia Advisory: SA18706 Secunia Advisory: SA18705 Secunia Advisory: SA18709 Secunia Advisory: SA18708 Secunia Advisory: SA18704 Secunia Advisory: SA18703 Secunia Advisory: SA18700 Secunia Advisory: SA20051 Secunia Advisory: SA22065 REDHAT http://www.redhat.com/support/errata/RHSA-2006-0199.html http://www.redhat.com/support/errata/RHSA-2006-0330.html http://www.redhat.com/support/errata/RHSA-2006-0200.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:670 MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:037 http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:036 http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:078 HP http://www.securityfocus.com/archive/1/archive/1/438730/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/446657/100/200/threaded GENTOO http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml http://www.gentoo.org/security/en/glsa/glsa-200604-12.xml FEDORA http://www.securityfocus.com/archive/1/archive/1/425975/100/0/threaded http://www.redhat.com/archives/fedora-announce-list/2006-February/msg00005.html http://www.redhat.com/archives/fedora-announce-list/2006-February/msg00006.html http://www.securityfocus.com/archive/1/archive/1/425978/100/0/threaded DEBIAN http://www.debian.org/security/2006/dsa-1051 http://www.debian.org/security/2006/dsa-1044 http://www.debian.org/security/2006/dsa-1046 CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm http://www.mozilla.org/security/announce/2006/mfsa2006-01.html BID 16476

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Microsoft Windows DNS Spoofing Vulnerabilities

2.	Microsoft Access Snapshot Viewer ActiveX Control Vulnerability

3.	Microsoft Windows Explorer Saved Search Vulnerability

4.	Microsoft SQL Server and MSDE Multiple Vulnerabilities

5.	Joomla Unauthorized Access Vulnerabilities

6.	Microsoft Outlook Web Access Script Insertion Vulnerabilities

7.	ArticleBeach Script "page" File Inclusion Vulnerability

8.	Mozilla Firefox Multiple Vulnerabilities

9.	Symantec Brightmail AntiSpam Notifier Denial of Service

10.	PHP-Nuke 4ndvddb Module "id" SQL Injection Vulnerability