Oval Definition:oval:org.opensuse.security:def:20064253
Revision Date:2015-11-16Version:1
Title:CVE-2006-4253
Description:
Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple Javascript timed events that load a deeply nested XML file, followed by redirecting the browser to another page, which leads to a concurrency failure that causes structures to be freed incorrectly, as demonstrated by (1) ffoxdie and (2) ffoxdie3. NOTE: it has been reported that Netscape 8.1 and K-Meleon 1.0.1 are also affected by ffoxdie. Mozilla confirmed to CVE that ffoxdie and ffoxdie3 trigger the same underlying vulnerability. NOTE: it was later reported that Firefox 2.0 RC2 and 1.5.0.7 are also affected.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2006-4253
Platform(s):Novell Linux Desktop 9 for x86
Novell Linux Desktop 9 for x86_64
SUSE LINUX 10.0
SUSE LINUX 10.1
SUSE LINUX 9.2
SUSE LINUX 9.3
Product(s):
Definition Synopsis
  • Release Information
  • suse101 is installed
  • MozillaFirefox-translations less than 1.5.0.7-1.2
  • OR MozillaFirefox less than 1.5.0.7-1.2
  • OR
  • suse100 is installed
  • OR suse92 is installed
  • OR suse93 is installed
  • MozillaFirefox-translations less than 1.5.0.7-1.1
  • OR MozillaFirefox less than 1.5.0.7-1.1
  • OR Package Information
  • suse101 is installed
  • MozillaThunderbird-translations less than 1.5.0.7-0.1
  • OR MozillaThunderbird less than 1.5.0.7-0.1
  • OR
  • suse100 is installed
  • OR suse92 is installed
  • OR suse93 is installed
  • AND MozillaThunderbird less than 1.5.0.7-0.1
  • OR Package Information
  • sles9-nld is installed
  • AND
  • MozillaFirefox-translations less than 1.5.0.7-1.2
  • OR MozillaFirefox less than 1.5.0.7-1.2
  • OR Package Information
  • suse101 is installed
  • AND
  • seamonkey-calendar less than 1.0.5-1.1
  • OR seamonkey-dom-inspector less than 1.0.5-1.1
  • OR seamonkey-irc less than 1.0.5-1.1
  • OR seamonkey-mail less than 1.0.5-1.1
  • OR seamonkey-spellchecker less than 1.0.5-1.1
  • OR seamonkey-venkman less than 1.0.5-1.1
  • OR seamonkey less than 1.0.5-1.1
    • BACK