Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2006-6500

Опубликовано: 20 дек. 2006
Источник: ubuntu
Приоритет: medium
EPSS Средний
CVSS2: 6.8

Описание

Heap-based buffer overflow in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by setting the CSS cursor to certain images that cause an incorrect size calculation when converting to a Windows bitmap.

РелизСтатусПримечание
dapper

not-affected

devel

not-affected

edgy

not-affected

feisty

not-affected

gutsy

not-affected

upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

edgy

DNE

feisty

DNE

gutsy

released

1.1.4-1ubuntu2
upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

not-affected

devel

DNE

edgy

not-affected

feisty

not-affected

gutsy

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

released

1.8.0.10-3ubuntu1
edgy

ignored

end of life, was needed
feisty

released

1.8.0.10-3ubuntu1
gutsy

released

1.8.0.10-3ubuntu1
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 97%
0.37533
Средний

6.8 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2006-6500

nvd
почти 19 лет назад

Heap-based buffer overflow in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by setting the CSS cursor to certain images that cause an incorrect size calculation when converting to a Windows bitmap.

debian логотип

CVE-2006-6500

debian
почти 19 лет назад

Heap-based buffer overflow in Mozilla Firefox 2.x before 2.0.0.1, 1.5. ...

github логотип

GHSA-59wr-4mm2-55f2

github
больше 3 лет назад

Heap-based buffer overflow in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by setting the CSS cursor to certain images that cause an incorrect size calculation when converting to a Windows bitmap.

EPSS

Процентиль: 97%
0.37533
Средний

6.8 Medium

CVSS2