Back to search
CVE-2006-6500
Published: Dec 20, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Heap-based buffer overflow in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by setting the CSS cursor to certain images that cause an incorrect size calculation when converting to a Windows bitmap.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
21668
vdb-entry
x_refsource_BID
MDKSA-2007:010
vendor-advisory
x_refsource_MANDRIVA
23672
third-party-advisory
x_refsource_SECUNIA
ADV-2006-5068
vdb-entry
x_refsource_VUPEN
23598
third-party-advisory
x_refsource_SECUNIA
23692
third-party-advisory
x_refsource_SECUNIA
GLSA-200701-04
vendor-advisory
x_refsource_GENTOO
23282
third-party-advisory
x_refsource_SECUNIA
23422
third-party-advisory
x_refsource_SECUNIA
HPSBUX02153
vendor-advisory
x_refsource_HP
1017400
vdb-entry
x_refsource_SECTRACK
23614
third-party-advisory
x_refsource_SECUNIA
ADV-2008-0083
vdb-entry
x_refsource_VUPEN
23420
third-party-advisory
x_refsource_SECUNIA
1017401
vdb-entry
x_refsource_SECTRACK
SUSE-SA:2006:080
vendor-advisory
x_refsource_SUSE
23545
third-party-advisory
x_refsource_SECUNIA
1017399
vdb-entry
x_refsource_SECTRACK
GLSA-200701-03
vendor-advisory
x_refsource_GENTOO
TA06-354A
third-party-advisory
x_refsource_CERT
VU#722244
third-party-advisory
x_refsource_CERT-VN
SSRT061181
vendor-advisory
x_refsource_HP
SUSE-SA:2007:006
vendor-advisory
x_refsource_SUSE
http://www.mozilla.org/security/announce/2006/mfsa2006-69.html
x_refsource_CONFIRM
MDKSA-2007:011
vendor-advisory
x_refsource_MANDRIVA
GLSA-200701-02
vendor-advisory
x_refsource_GENTOO
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now