CVE-2006-2788 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-2788
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-2788

Description: Double-free vulnerability in the getRawDER function for nsIX509Cert in Firefox allows remote attackers to cause a denial of service (hang) and possibly execute arbitrary code via certain Javascript code.

CVE Status: Candidate

References: UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-296-1 http://www.ubuntu.com/usn/usn-361-1 SAID Secunia Advisory: SA21269 Secunia Advisory: SA21270 Secunia Advisory: SA21336 Secunia Advisory: SA21532 Secunia Advisory: SA21631 Secunia Advisory: SA22247 Secunia Advisory: SA22299 Secunia Advisory: SA22342 Secunia Advisory: SA22849 REDHAT http://www.redhat.com/support/errata/RHSA-2006-0594.html http://rhn.redhat.com/errata/RHSA-2006-0609.html http://www.redhat.com/support/errata/RHSA-2006-0611.html http://www.redhat.com/support/errata/RHSA-2006-0610.html http://www.redhat.com/support/errata/RHSA-2006-0578.html MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:145 http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:143 DEBIAN http://www.debian.org/security/2006/dsa-1192 http://www.debian.org/security/2006/dsa-1210 http://www.us.debian.org/security/2006/dsa-1191 CONFIRM

Return to the previous page.