CVE-2006-1739

Currently unrated

Key Information:

Vendor: Mozilla
Status: Firefox; Thunderbird; Seamonkey; Mozilla Suite
Vendor: CVE Published:; 14 April 2006

Summary

The CSS border-rendering code in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via certain Cascading Style Sheets (CSS) that causes an out-of-bounds array write and buffer overflow.

References

http://www.kb.cert.org/vuls/id/935556

third-party-advisoryx_refsource_CERT-VN

https://usn.ubuntu.com/275-1/

vendor-advisoryx_refsource_UBUNTU

http://www.redhat.com/support/errata/RHSA-2006-0330.html

vendor-advisoryx_refsource_REDHAT

EPSS Score

95% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 14, 2006
Vulnerability Reserved
Apr 12, 2006