FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2006-3803

This CVE name corresponds to:

Entered Topic
2006-07-27 mozilla -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2006-3803
Phase Assigned(20060724)

Description

Race condition in the JavaScript garbage collection in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code by causing the garbage collector to delete a temporary variable while it is still being used during the creation of a new Function object.

References

Source Reference
BUGTRAQ 20060727 rPSA-2006-0137-1 firefox
CONFIRM http://www.mozilla.org/security/announce/2006/mfsa2006-48.html
CONFIRM https://issues.rpath.com/browse/RPL-536
CONFIRM https://issues.rpath.com/browse/RPL-537
GENTOO GLSA-200608-02
GENTOO GLSA-200608-04
GENTOO GLSA-200608-03
HP HPSBUX02153
HP SSRT061181
HP HPSBUX02156
HP SSRT061236
MANDRIVA MDKSA-2006:143
MANDRIVA MDKSA-2006:145
MANDRIVA MDKSA-2006:146
REDHAT RHSA-2006:0608
REDHAT RHSA-2006:0610
REDHAT RHSA-2006:0611
REDHAT RHSA-2006:0609
REDHAT RHSA-2006:0594
SGI 20060703-01-P
SUSE SUSE-SA:2006:048
UBUNTU USN-327-1
UBUNTU USN-329-1
UBUNTU USN-350-1
UBUNTU USN-354-1
CERT TA06-208A
CERT-VN VU#265964
BID 19181
OVAL oval:org.mitre.oval:def:10635
VUPEN ADV-2006-2998
VUPEN ADV-2006-3748
VUPEN ADV-2006-3749
VUPEN ADV-2008-0083
SECTRACK 1016586
SECTRACK 1016587
SECTRACK 1016588
SECUNIA 19873
SECUNIA 21216
SECUNIA 21228
SECUNIA 21229
SECUNIA 21246
SECUNIA 21243
SECUNIA 21269
SECUNIA 21270
SECUNIA 21275
SECUNIA 21336
SECUNIA 21358
SECUNIA 21361
SECUNIA 21250
SECUNIA 21262
SECUNIA 21343
SECUNIA 21529
SECUNIA 21532
SECUNIA 21607
SECUNIA 21631
SECUNIA 22055
SECUNIA 22210
SECUNIA 22065
SECUNIA 22066
XF mozilla-javascript-garbage-race-condition(27984)