CVE-2006-6498Out-of-bounds Write in Mozilla Firefox

15 documents8 sources
Severity
6.8MEDIUMNVD
EPSS
11.2%
top 6.47%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Mozilla FirefoxMozillaMozilla Seamonkey+1 more
Timeline
PublishedDec 20
Latest updateMay 3

Description

Multiple unspecified vulnerabilities in the JavaScript engine for Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, SeaMonkey before 1.0.7, and Mozilla 1.7 and probably earlier on Solaris, allow remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via unknown impact and attack vectors.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages4 packages

NVDmozilla/firefox10 versions+9
NVDmozilla/seamonkey7 versions+6
NVDmozilla/thunderbird30 versions+29

🔴Vulnerability Details

3
GHSA
GHSA-jmfp-6hwg-w7qf: Multiple unspecified vulnerabilities in the JavaScript engine for Mozilla Firefox 22022-05-03
OSV
CVE-2006-6498: Multiple unspecified vulnerabilities in the JavaScript engine for Mozilla Firefox 22006-12-20
CVEList
CVE-2006-6498: Multiple unspecified vulnerabilities in the JavaScript engine for Mozilla Firefox 22006-12-20

📋Vendor Advisories

6
Ubuntu
Firefox regression2007-01-27
Ubuntu
Thunderbird vulnerabilities2007-01-05
Ubuntu
Firefox vulnerabilities2007-01-03
Ubuntu
Firefox vulnerabilities2007-01-03
Red Hat
security flaw2006-12-19

💬Community

5
Bugzilla
CVE-2006-6498 security flaw2018-08-16
Bugzilla
seamonkey < 1.0.7 multiple vulnerabilities2006-12-21
Bugzilla
CVE-2006-6497 Multiple Thunderbird issues (CVE-2006-6498, CVE-2006-6501, CVE-2006-6502, CVE-2006-6503, CVE-2006-6504, CVE-2006-6505)2006-12-14
Bugzilla
CVE-2006-6497 Multiple Seamonkey issues (CVE-2006-6498, CVE-2006-6501, CVE-2006-6502, CVE-2006-6503, CVE-2006-6504, CVE-2006-6505)2006-12-14
Bugzilla
CVE-2006-6497 Multiple Firefox issues (CVE-2006-6498, CVE-2006-6501, CVE-2006-6502, CVE-2006-6503, CVE-2006-6504)2006-12-14