Description nsHTMLContentSink.cpp in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors involving a "particular sequence of HTML tags" that leads to memory corruption.
CVSS vector AV:N/AC:M/C:C/I:C/A:C Exploitability: 8.6 | Impact: 10.0 Affected Packages5 packages
🔴 Vulnerability Details3 GHSA GHSA-pwcc-x4h8-g74h: nsHTMLContentSink ↗ 2022-05-03 ▶ CVEList CVE-2006-0749: nsHTMLContentSink ↗ 2006-04-14 ▶ OSV CVE-2006-0749: nsHTMLContentSink ↗ 2006-04-14 ▶
📋 Vendor Advisories5 Ubuntu Thunderbird vulnerabilities ↗ 2006-05-03 ▶ Ubuntu Mozilla vulnerabilities ↗ 2006-04-28 ▶ Ubuntu Firefox vulnerabilities ↗ 2006-04-20 ▶ Red Hat Firefox Tag Order Vulnerability ↗ 2006-04-14 ▶ Debian CVE-2006-0749: firefox - nsHTMLContentSink.cpp in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.... ↗ 2006 ▶
💬 Community14 Bugzilla Mozilla Thunderbird multiple vulnerabilities (CVE-2006-0749, CVE-2006-1724, CVE-2006-1730, CVE-2006-0292, et al.) ↗ 2006-04-22 ▶ Bugzilla multiple critical Firefox, Mozilla vulnerabilities (CVE-2006-0749, CVE-2006-1724, et al.) ↗ 2006-04-17 ▶ Bugzilla CVE-2006-0749 Mozilla Firefox Tag Order Vulnerability ↗ 2006-04-13 ▶ Bugzilla CVE-2006-0749 Mozilla Firefox Tag Order Vulnerability ↗ 2006-04-13 ▶ Bugzilla CVE-2006-0749 Mozilla Firefox Tag Order Vulnerability ↗ 2006-04-13 ▶ Show 9 more