Oval Definition:oval:org.mitre.oval:def:670
Revision Date:2009-11-09Version:4
Title:Mozilla JavaScript Garbage-Collection Hazards in jsinterp.c
Description:The Javascript interpreter (jsinterp.c) in Mozilla and Firefox before 1.5.1 does not properly dereference objects, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via unknown attack vectors related to garbage collection.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2006-0292
Platform(s):Microsoft Windows 2000
Microsoft Windows NT
Microsoft Windows Server 2003
Microsoft Windows XP
Product(s):mozilla
Definition Synopsis
  • Mozilla Thunderbird pre-1.5 is installed without an upgraded Firefox (1.5.0.1)
  • Mozilla Thunderbird pre-1.5
  • AND Thunderbird pre-1.5 is installed
  • AND NOT The version of Firefox.exe is greater than or equal to 1.8.20060.11112
  • OR Mozilla Firefox pre-1.5 is installed
  • Mozilla Firefox pre-1.5
  • AND Firefox pre-1.5 is installed
  • OR Mozilla Firefox version 1.5 is installed and has NOT been patched with version 1.5.0.1
  • Mozilla Firefox version 1.5 is installed
  • AND Firefox version 1.5 or earlier is installed
  • AND NOT The version of Firefox.exe is greater than or equal to 1.8.20060.11112
  • OR Mozilla Suite version 1.7.12 or earlier is installed
  • Mozilla Suite version 1.7.12 or earlier is installed
  • AND Mozilla Suite version 1.7.12 or earlier is installed
  • OR A pre-release of SeaMonkey 1.0 is installed
  • A pre-release of SeaMonkey 1.0 is installed
  • AND A pre-release of SeaMonkey 1.0 is installed
    • BACK