QwikSec

Security Database

CVE

CWE

Training

CVE-2006-5159

Published: Oct 3, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

Stack-based buffer overflow in Mozilla Firefox allows remote attackers to execute arbitrary code via unspecified vectors involving JavaScript. NOTE: the vendor and original researchers have released a follow-up comment disputing the severity of this issue, in which the researcher states that "we mentioned that there was a previously known Firefox vulnerability that could result in a stack overflow ending up in remote code execution. However, the code we presented did not in fact do this... I have not succeeded in making this code do anything more than cause a crash and eat up system resources"

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

firefox-multiple-javascript-bo(29317)

vdb-entry

x_refsource_XF

vdb-entry

x_refsource_BID

vdb-entry

x_refsource_SECTRACK

http://developer.mozilla.org/devnews/index.php/2006/10/02/update-possible-vulnerability-reported-at-toorcon/

x_refsource_MISC

20061001 0day in Firefox from ToorCon '06

mailing-list

x_refsource_BUGTRAQ

third-party-advisory

x_refsource_SREASON

http://www.securitypronews.com/insiderreports/insider/spn-49-20061003FirefoxVulnerabilityClaimWasAJoke.html

x_refsource_MISC

20061001 zero-day flaws in Firefox: about 30 unpatched Firefox flaws

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.