CVE-2006-4253
published 2006-08-21CVE-2006-4253: Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary…
PriorityP337high7.6CVSS 2.0
AVNACHAuNCCICAC
EXPLOIT
EPSS
14.07%
96.1th percentile
Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple Javascript timed events that load a deeply nested XML file, followed by redirecting the browser to another page, which leads to a concurrency failure that causes structures to be freed incorrectly, as demonstrated by (1) ffoxdie and (2) ffoxdie3. NOTE: it has been reported that Netscape 8.1 and K-Meleon 1.0.1 are also affected by ffoxdie. Mozilla confirmed to CVE that ffoxdie and ffoxdie3 trigger the same underlying vulnerability. NOTE: it was later reported that Firefox 2.0 RC2 and 1.5.0.7 are also affected.
Affected
31 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firefox | < firefox 1.5.dfsg+1.5.0.7-1 (sid) | firefox 1.5.dfsg+1.5.0.7-1 (sid) |
| debian | thunderbird | < firefox 1.5.dfsg+1.5.0.7-1 (sid) | firefox 1.5.dfsg+1.5.0.7-1 (sid) |
| k-meleon_project | k-meleon | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
CVSS provenance
nvdv2.07.6HIGHAV:N/AC:H/Au:N/C:C/I:C/A:C
osv7.6HIGH
vendor_debian7.6MEDIUM
vendor_redhat7.6HIGH
vendor_ubuntu7.6HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Thunderbird vulnerabilities
vendor_ubuntu·2006-09-25·CVSS 7.6
CVE-2006-4253 [HIGH] Thunderbird vulnerabilities
Title: Thunderbird vulnerabilities
Summary: Thunderbird vulnerabilities
Various flaws have been reported that allow an attacker to execute
arbitrary code with user privileges by tricking the user into opening
a malicious email containing JavaScript. Please note that JavaScript
is disabled by default for emails, and it is not recommended to enable
it. (CVE-2006-4253, CVE-2006-4565, CVE-2006-4566, CVE-2006-4571)
The NSS library did not sufficiently check the padding of PKCS #1 v1.5
signatures if the exponent of the public key is 3 (which is widely
used for CAs). This could be exploited to forge valid signatures
without the need of the secret key. (CVE-2006-4340)
Jon Oberheide reported a way how a remote attacker could trick users
into downloading arbitrary extensions with circumventing t
Ubuntu
firefox vulnerabilities
vendor_ubuntu·2006-09-23·CVSS 7.6
CVE-2006-4571 [HIGH] firefox vulnerabilities
Title: firefox vulnerabilities
Summary: firefox vulnerabilities
Various flaws have been reported that allow an attacker to execute
arbitrary code with user privileges by tricking the user into opening
a malicious web page containing JavaScript. (CVE-2006-4253,
CVE-2006-4565, CVE-2006-4566, CVE-2006-4568, CVE-2006-4569
CVE-2006-4571)
The NSS library did not sufficiently check the padding of PKCS #1 v1.5
signatures if the exponent of the public key is 3 (which is widely
used for CAs). This could be exploited to forge valid signatures
without the need of the secret key. (CVE-2006-4340)
Jon Oberheide reported a way how a remote attacker could trick users
into downloading arbitrary extensions with circumventing the normal
SSL certificate check. The attacker would have to be in a position to
Ubuntu
Thunderbird vulnerabilities
vendor_ubuntu·2006-09-22·CVSS 7.5
CVE-2006-3113 [HIGH] Thunderbird vulnerabilities
Title: Thunderbird vulnerabilities
Summary: Thunderbird vulnerabilities
This update upgrades Thunderbird from 1.0.8 to 1.5.0.7. This step was
necessary since the 1.0.x series is not supported by upstream any
more.
Various flaws have been reported that allow an attacker to execute
arbitrary code with user privileges by tricking the user into opening
a malicious email containing JavaScript. Please note that JavaScript
is disabled by default for emails, and it is not recommended to enable
it. (CVE-2006-3113, CVE-2006-3802, CVE-2006-3803, CVE-2006-3805,
CVE-2006-3806, CVE-2006-3807, CVE-2006-3809, CVE-2006-3810,
CVE-2006-3811, CVE-2006-3812, CVE-2006-4253, CVE-2006-4565,
CVE-2006-4566, CVE-2006-4571)
A buffer overflow has been discovered in the handling of .vcard files.
By tricking a user
Red Hat
security flaw
vendor_redhat·2006-08-12·CVSS 7.6
CVE-2006-4253 [HIGH] security flaw
security flaw
Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple Javascript timed events that load a deeply nested XML file, followed by redirecting the browser to another page, which leads to a concurrency failure that causes structures to be freed incorrectly, as demonstrated by (1) ffoxdie and (2) ffoxdie3. NOTE: it has been reported that Netscape 8.1 and K-Meleon 1.0.1 are also affected by ffoxdie. Mozilla confirmed to CVE that ffoxdie and ffoxdie3 trigger the same underlying vulnerability. NOTE: it was later reported that Firefox 2.0 RC2 and 1.5.0.7 are also affected.
Debian
CVE-2006-4253: firefox - Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote a...
vendor_debian·2006·CVSS 7.6
CVE-2006-4253 [HIGH] CVE-2006-4253: firefox - Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote a...
Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple Javascript timed events that load a deeply nested XML file, followed by redirecting the browser to another page, which leads to a concurrency failure that causes structures to be freed incorrectly, as demonstrated by (1) ffoxdie and (2) ffoxdie3. NOTE: it has been reported that Netscape 8.1 and K-Meleon 1.0.1 are also affected by ffoxdie. Mozilla confirmed to CVE that ffoxdie and ffoxdie3 trigger the same underlying vulnerability. NOTE: it was later reported that Firefox 2.0 RC2 and 1.5.0.7 are also affected.
Scope: local
sid: resolved (fixed in 1.5.dfsg+1.5.0.7-1)
GHSA
GHSA-42hr-qcx2-4fr6: Concurrency vulnerability in Mozilla Firefox 1
ghsa_unreviewed·2022-05-03
CVE-2006-4253 [HIGH] GHSA-42hr-qcx2-4fr6: Concurrency vulnerability in Mozilla Firefox 1
Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple Javascript timed events that load a deeply nested XML file, followed by redirecting the browser to another page, which leads to a concurrency failure that causes structures to be freed incorrectly, as demonstrated by (1) ffoxdie and (2) ffoxdie3. NOTE: it has been reported that Netscape 8.1 and K-Meleon 1.0.1 are also affected by ffoxdie. Mozilla confirmed to CVE that ffoxdie and ffoxdie3 trigger the same underlying vulnerability. NOTE: it was later reported that Firefox 2.0 RC2 and 1.5.0.7 are also affected.
OSV
CVE-2006-4253: Concurrency vulnerability in Mozilla Firefox 1
osv·2006-08-21·CVSS 7.6
CVE-2006-4253 [HIGH] CVE-2006-4253: Concurrency vulnerability in Mozilla Firefox 1
Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple Javascript timed events that load a deeply nested XML file, followed by redirecting the browser to another page, which leads to a concurrency failure that causes structures to be freed incorrectly, as demonstrated by (1) ffoxdie and (2) ffoxdie3. NOTE: it has been reported that Netscape 8.1 and K-Meleon 1.0.1 are also affected by ffoxdie. Mozilla confirmed to CVE that ffoxdie and ffoxdie3 trigger the same underlying vulnerability. NOTE: it was later reported that Firefox 2.0 RC2 and 1.5.0.7 are also affected.
No detection rules found.
Bugzilla
CVE-2006-4253 security flaw
bugzilla·2018-08-16·CVSS 7.6
CVE-2006-4253 [HIGH] CVE-2006-4253 security flaw
CVE-2006-4253 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple Javascript timed events that load a deeply nested XML file, followed by redirecting the browser to another page, which leads to a concurrency failure that causes structures to be freed incorrectly, as demonstrated by (1) ffoxdie and (2) ffoxdie3. NOTE: it has been reported that Netscape 8.1 and K-Meleon 1.0.1 are also affected by ffoxdie. Mozilla confirmed to CVE that ffoxdie and ffoxdie3 trigger the same underlying vulnerability.
Bugzilla
CVE-2006-4340 Various SeaMonkey security issues (CVE-2006-4253 CVE-2006-4565 CVE-2006-4566 CVE-2006-4568 CVE-2006-4570 CVE-2006-4571)
bugzilla·2006-09-14·CVSS 7.6
CVE-2006-4340 [HIGH] CVE-2006-4340 Various SeaMonkey security issues (CVE-2006-4253 CVE-2006-4565 CVE-2006-4566 CVE-2006-4568 CVE-2006-4570 CVE-2006-4571)
CVE-2006-4340 Various SeaMonkey security issues (CVE-2006-4253 CVE-2006-4565 CVE-2006-4566 CVE-2006-4568 CVE-2006-4570 CVE-2006-4571)
** MFSA-2006-57 **
Two flaws were found in the way Firefox processed certain
regular expressions. A malicious web page could crash the
browser or possibly execute arbitrary code as the user running
Firefox. (CVE-2006-4565, CVE-2006-4566)
CVE-2006-4565 https://bugzilla.mozilla.org/show_bug.cgi?id=346090
CVE-2006-4566 https://bugzilla.mozilla.org/show_bug.cgi?id=346794
impact=critical,public=20060914
** MFSA-2006-58 **
A flaw was found in the Firefox auto-update verfication
system. An attacker who has the ability to spoof a victim's
DNS could get Firefox to download and install malicious code.
In order to exploit this issue an attacker would also need to
Bugzilla
CVE-2006-4340 Various Firefox security issues (CVE-2006-4253 CVE-2006-4565 CVE-2006-4566 CVE-2006-4567 CVE-2006-4568 CVE-2006-4569 CVE-2006-4571)
bugzilla·2006-09-14·CVSS 7.6
CVE-2006-4340 [HIGH] CVE-2006-4340 Various Firefox security issues (CVE-2006-4253 CVE-2006-4565 CVE-2006-4566 CVE-2006-4567 CVE-2006-4568 CVE-2006-4569 CVE-2006-4571)
CVE-2006-4340 Various Firefox security issues (CVE-2006-4253 CVE-2006-4565 CVE-2006-4566 CVE-2006-4567 CVE-2006-4568 CVE-2006-4569 CVE-2006-4571)
** MFSA-2006-57 **
Two flaws were found in the way Firefox processed certain
regular expressions. A malicious web page could crash the
browser or possibly execute arbitrary code as the user running
Firefox. (CVE-2006-4565, CVE-2006-4566)
CVE-2006-4565 https://bugzilla.mozilla.org/show_bug.cgi?id=346090
CVE-2006-4566 https://bugzilla.mozilla.org/show_bug.cgi?id=346794
impact=critical,public=20060914
** MFSA-2006-58 **
A flaw was found in the Firefox auto-update verfication
system. An attacker who has the ability to spoof a victim's
DNS could get Firefox to download and install malicious code.
In order to exploit this issue an attacker would a
Bugzilla
CVE-2006-4340 Various Thunderbird security issues (CVE-2006-4253 CVE-2006-4565 CVE-2006-4566 CVE-2006-4567 CVE-2006-4570 CVE-2006-4571)
bugzilla·2006-09-14·CVSS 7.6
CVE-2006-4340 [HIGH] CVE-2006-4340 Various Thunderbird security issues (CVE-2006-4253 CVE-2006-4565 CVE-2006-4566 CVE-2006-4567 CVE-2006-4570 CVE-2006-4571)
CVE-2006-4340 Various Thunderbird security issues (CVE-2006-4253 CVE-2006-4565 CVE-2006-4566 CVE-2006-4567 CVE-2006-4570 CVE-2006-4571)
** MFSA-2006-57 **
Two flaws were found in the way Firefox processed certain
regular expressions. A malicious web page could crash the
browser or possibly execute arbitrary code as the user running
Firefox. (CVE-2006-4565, CVE-2006-4566)
CVE-2006-4565 https://bugzilla.mozilla.org/show_bug.cgi?id=346090
CVE-2006-4566 https://bugzilla.mozilla.org/show_bug.cgi?id=346794
** MFSA-2006-58 **
A flaw was found in the Firefox auto-update verfication
system. An attacker who has the ability to spoof a victim's
DNS could get Firefox to download and install malicious code.
In order to exploit this issue an attacker would also need to
get a victim to previously acc
ftp://patches.sgi.com/support/free/security/advisories/20060901-01-P.aschttp://lcamtuf.coredump.cx/ffoxdie.htmlhttp://lcamtuf.coredump.cx/ffoxdie3.htmlhttp://secunia.com/advisories/21513http://secunia.com/advisories/21906http://secunia.com/advisories/21915http://secunia.com/advisories/21916http://secunia.com/advisories/21939http://secunia.com/advisories/21940http://secunia.com/advisories/21949http://secunia.com/advisories/21950http://secunia.com/advisories/22001http://secunia.com/advisories/22025http://secunia.com/advisories/22036http://secunia.com/advisories/22055http://secunia.com/advisories/22056http://secunia.com/advisories/22066http://secunia.com/advisories/22074http://secunia.com/advisories/22088http://secunia.com/advisories/22195http://secunia.com/advisories/22210http://secunia.com/advisories/22274http://secunia.com/advisories/22391http://secunia.com/advisories/22422http://secunia.com/advisories/24711http://security.gentoo.org/glsa/glsa-200609-19.xmlhttp://security.gentoo.org/glsa/glsa-200610-01.xmlhttp://security.gentoo.org/glsa/glsa-200610-04.xmlhttp://securitytracker.com/id?1016846http://securitytracker.com/id?1016847http://securitytracker.com/id?1016848http://support.avaya.com/elmodocs2/security/ASA-2006-224.htmhttp://www.mandriva.com/security/advisories?name=MDKSA-2006:168http://www.mandriva.com/security/advisories?name=MDKSA-2006:169http://www.mozilla.org/security/announce/2006/mfsa2006-59.htmlhttp://www.novell.com/linux/security/advisories/2006_54_mozilla.htmlhttp://www.pianetapc.it/view.php?id=770http://www.redhat.com/support/errata/RHSA-2006-0675.htmlhttp://www.redhat.com/support/errata/RHSA-2006-0676.htmlhttp://www.redhat.com/support/errata/RHSA-2006-0677.htmlhttp://www.securiteam.com/securitynews/5VP0M0AJFW.htmlhttp://www.securityfocus.com/archive/1/443020/100/100/threadedhttp://www.securityfocus.com/archive/1/443306/100/100/threadedhttp://www.securityfocus.com/archive/1/443500/100/100/threadedhttp://www.securityfocus.com/archive/1/443528/100/0/threadedhttp://www.securityfocus.com/archive/1/446140/100/0/threadedhttp://www.securityfocus.com/archive/1/447837/100/200/threadedhttp://www.securityfocus.com/archive/1/447840/100/200/threadedhttp://www.securityfocus.com/archive/1/448956/100/100/threadedhttp://www.securityfocus.com/archive/1/448984/100/100/threadedhttp://www.securityfocus.com/archive/1/449245/100/100/threadedhttp://www.securityfocus.com/archive/1/449487/100/0/threadedhttp://www.securityfocus.com/archive/1/449726/100/0/threadedhttp://www.securityfocus.com/bid/19488http://www.securityfocus.com/bid/19534http://www.ubuntu.com/usn/usn-350-1http://www.ubuntu.com/usn/usn-351-1http://www.ubuntu.com/usn/usn-352-1http://www.ubuntu.com/usn/usn-354-1http://www.vupen.com/english/advisories/2006/3617http://www.vupen.com/english/advisories/2006/3748http://www.vupen.com/english/advisories/2007/1198http://www.vupen.com/english/advisories/2008/0083http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00771742https://bugzilla.mozilla.org/show_bug.cgi?id=348514https://issues.rpath.com/browse/RPL-640https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9528ftp://patches.sgi.com/support/free/security/advisories/20060901-01-P.aschttp://lcamtuf.coredump.cx/ffoxdie.htmlhttp://lcamtuf.coredump.cx/ffoxdie3.htmlhttp://secunia.com/advisories/21513http://secunia.com/advisories/21906http://secunia.com/advisories/21915http://secunia.com/advisories/21916http://secunia.com/advisories/21939http://secunia.com/advisories/21940http://secunia.com/advisories/21949http://secunia.com/advisories/21950http://secunia.com/advisories/22001http://secunia.com/advisories/22025http://secunia.com/advisories/22036http://secunia.com/advisories/22055http://secunia.com/advisories/22056http://secunia.com/advisories/22066http://secunia.com/advisories/22074http://secunia.com/advisories/22088http://secunia.com/advisories/22195http://secunia.com/advisories/22210http://secunia.com/advisories/22274http://secunia.com/advisories/22391http://secunia.com/advisories/22422http://secunia.com/advisories/24711http://security.gentoo.org/glsa/glsa-200609-19.xmlhttp://security.gentoo.org/glsa/glsa-200610-01.xmlhttp://security.gentoo.org/glsa/glsa-200610-04.xmlhttp://securitytracker.com/id?1016846http://securitytracker.com/id?1016847http://securitytracker.com/id?1016848http://support.avaya.com/elmodocs2/security/ASA-2006-224.htmhttp://www.mandriva.com/security/advisories?name=MDKSA-2006:168
+ 34 more references
2006-08-21
Published