CVE Reference: CVE-2006-6504

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2006-6504

Description:
Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to execute arbitrary code by appending an SVG comment DOM node to another type of document, which triggers memory corruption.

CVE Status:
Candidate

References:

UBUNTU
  http://www.ubuntu.com/usn/usn-398-2
  http://www.ubuntu.com/usn/usn-398-1

SUSE
  http://www.novell.com/linux/security/advisories/2007_06_mozilla.html
  http://www.novell.com/linux/security/advisories/2006_80_mozilla.html

ST
  1017418
  1017417

SGI

SAID
  Secunia Advisory: SA23614
  Secunia Advisory: SA23545
  Secunia Advisory: SA23601
  Secunia Advisory: SA23589
  Secunia Advisory: SA23514
  Secunia Advisory: SA23468
  Secunia Advisory: SA23422
  Secunia Advisory: SA23440
  Secunia Advisory: SA23282
  Secunia Advisory: SA23439
  Secunia Advisory: SA23433
  Secunia Advisory: SA23618
  Secunia Advisory: SA23692
  Secunia Advisory: SA23672

REDHAT
  http://rhn.redhat.com/errata/RHSA-2006-0759.html
  http://rhn.redhat.com/errata/RHSA-2006-0760.html
  http://rhn.redhat.com/errata/RHSA-2006-0758.html

OVAL
  http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11077

MISC
  http://www.zerodayinitiative.com/advisories/ZDI-06-051.html

MANDRIVA
  http://www.mandriva.com/security/advisories?name=MDKSA-2007:010

HP
  http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742

GENTOO
  http://security.gentoo.org/glsa/glsa-200701-02.xml
  http://www.gentoo.org/security/en/glsa/glsa-200701-04.xml

FEDORA
  http://fedoranews.org/cms/node/2297
  http://fedoranews.org/cms/node/2338

CONFIRM
  http://www.mozilla.org/security/announce/2006/mfsa2006-73.html

CERT-VN
  928956

CERT
  http://www.us-cert.gov/cas/techalerts/TA06-354A.html

BUGTRAQ
  http://www.securityfocus.com/archive/1/archive/1/455728/100/200/threaded
  http://www.securityfocus.com/archive/1/archive/1/455145/100/0/threaded
  http://www.securityfocus.com/archive/1/archive/1/454939/100/0/threaded

BID
  21668


Return to the previous page.