Published: 25/04/2006 Updated: 18/10/2018

CVSS v2 Base Score: 5.1 | Impact Score: 6.4 | Exploitability Score: 4.9

VMScore: 515

Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P

Mozilla Firefox 1.5.0.2, when designMode is enabled, allows remote malicious users to cause a denial of service and possibly execute arbitrary code via certain Javascript that is not properly handled by the contentWindow.focus method in an iframe, which causes a reference to a deleted controller context object. NOTE: this was originally claimed to be a buffer overflow in (1) js320.dll and (2) xpcom_core.dll, but the vendor disputes this claim.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mozilla firefox 1.5.0.2

Debian Bug report logs - #364810 [CVE-2006-1993] Firefox Remote Code Execution and DoS Package: firefox; Maintainer for firefox is Maintainers of Mozilla-related packages <team+pkg-mozilla@trackerdebianorg>; Source for firefox is src:firefox (PTS, buildd, popcon) Reported by: Daniel Leidert <danielleidert@wgddde> ...

Martijn Wargers and Nick Mott described crashes of Mozilla due to the use of a deleted controller context In theory this could be abused to execute malicious code Since Mozilla and Firefox share the same codebase, Firefox may be vulnerable as well For the stable distribution (sarge) this problem has been fixed in version 104-2sarge7 For the u ...

Martijn Wargers and Nick Mott described crashes of Mozilla due to the use of a deleted controller context In theory this could be abused to execute malicious code For the stable distribution (sarge) this problem has been fixed in version 178-1sarge6 For the unstable distribution (sid) this problem will be fixed soon We recommend that you upgr ...

Mozilla Foundation Security Advisory 2006-30 Deleted object reference when designMode="on" Announced May 2, 2006 Reporter Martijn Wargers, Nick Mott, splices Impact Critical Products Firefox Fixed in ...

<!-- --------------------------------------------------- Software: Firefox Web Browser Tested: Linux, Windows clients' version 1502 Result: Firefox Remote Code Execution and Denial of Service - Vendor contacted, no patch yet Problem: A handling issue exists in how Firefox handles certain Javascript in js320dll and xpcom_coredll re ...

CWE-399 http://www.securident.com/vuln/ff.txt http://www.securityfocus.com/bid/17671 http://securitytracker.com/id?1015981 http://secunia.com/advisories/19802 http://www.mozilla.org/security/announce/2006/mfsa2006-30.html http://www.kb.cert.org/vuls/id/866300 http://www.debian.org/security/2006/dsa-1053 http://www.gentoo.org/security/en/glsa/glsa-200605-06.xml http://www.debian.org/security/2006/dsa-1055 http://secunia.com/advisories/20019 http://secunia.com/advisories/20015 http://secunia.com/advisories/20214 http://secunia.com/advisories/20070 http://secunia.com/advisories/22066 http://securityreason.com/securityalert/780 http://www.vupen.com/english/advisories/2008/0083 http://www.vupen.com/english/advisories/2006/1922 http://www.vupen.com/english/advisories/2006/3748 http://www.vupen.com/english/advisories/2006/1614 https://exchange.xforce.ibmcloud.com/vulnerabilities/25994 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1790 http://www.securityfocus.com/archive/1/446658/100/200/threaded http://www.securityfocus.com/archive/1/434524/100/0/threaded http://www.securityfocus.com/archive/1/431878/100/0/threaded https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=364810 https://nvd.nist.gov https://www.exploit-db.com/exploits/1716/https://www.kb.cert.org/vuls/id/866300

CVE-2006-1993

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect