CVE-2006-5748Out-of-bounds Write in Firefox

11 documents7 sources
Severity
5.0MEDIUMNVD
EPSS
12.3%
top 6.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Debian FirefoxDebian Firefox-esrMozilla Firefox+2 more
Timeline
PublishedNov 8
Latest updateMay 3

Description

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors that trigger memory corruption.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages5 packages

NVDmozilla/firefox8 versions+7
NVDmozilla/seamonkey5 versions+4
NVDmozilla/thunderbird12 versions+11
debiandebian/firefox< firefox 45.0-1 (sid)
debiandebian/firefox-esr< firefox 45.0-1 (sid)

Patches

Patch: patches.sgi.comPatch: rhn.redhat.comPatch: rhn.redhat.com

🔴Vulnerability Details

2
GHSA
GHSA-vg9c-529p-65wv: Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 12022-05-03
OSV
CVE-2006-5748: Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox before 12006-11-08

📋Vendor Advisories

4
Ubuntu
Firefox vulnerabilities2006-11-21
Ubuntu
Thunderbird vulnerabilities2006-11-21
Red Hat
seamonkey < 1.0.6 multiple vulnerabilities2006-11-08
Debian
CVE-2006-5748: firefox - Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox...2006

💬Community

4
Bugzilla
seamonkey < 1.0.6 multiple vulnerabilities2006-11-09
Bugzilla
CVE-2006-5462 Multiple thunderbird vulnerabilities (CVE-2006-5463, CVE-2006-5464, CVE-2006-5747, CVE-2006-5748)2006-11-07
Bugzilla
CVE-2006-5462 Multiple firefox vulnerabilities (CVE-2006-5463, CVE-2006-5464, CVE-2006-5747, CVE-2006-5748)2006-11-07
Bugzilla
CVE-2006-5462 Multiple seamonkey vulnerabilities (CVE-2006-5463, CVE-2006-5464, CVE-2006-5747, CVE-2006-5748)2006-11-07