FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2006-4253

This CVE name corresponds to:

Entered Topic
2006-09-15 mozilla -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2006-4253 at cve.mitre.org

Details

Type Candidate
Name CVE-2006-4253
Phase Assigned(20060821)

Description

Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple Javascript timed events that load a deeply nested XML file, followed by redirecting the browser to another page, which leads to a concurrency failure that causes structures to be freed incorrectly, as demonstrated by (1) ffoxdie and (2) ffoxdie3. NOTE: it has been reported that Netscape 8.1 and K-Meleon 1.0.1 are also affected by ffoxdie. Mozilla confirmed to CVE that ffoxdie and ffoxdie3 trigger the same underlying vulnerability. NOTE: it was later reported that Firefox 2.0 RC2 and 1.5.0.7 are also affected.

References

Source Reference
BUGTRAQ 20060812 Concurrency-related vulnerabilities in browsers - expect problems
BUGTRAQ 20060815 Re: Concurrency-related vulnerabilities in browsers - expect problems
BUGTRAQ 20060817 RE: [VulnWatch] Re: Concurrency-related vulnerabilities in browsers - expect problems
BUGTRAQ 20060817 Re: [VulnWatch] Re: Concurrency-related vulnerabilities in browsers - expect problems
BUGTRAQ 20061005 Re: Concurrency-related vulnerabilities in browsers - expect problems
BUGTRAQ 20061006 Re: Concurrency-related vulnerabilities in browsers - expect problems
BUGTRAQ 20061017 Flaw in Firefox 2.0 RC2
BUGTRAQ 20061017 Re: Flaw in Firefox 2.0 RC2
BUGTRAQ 20061023 Flaw in Firefox 2.0 Final
BUGTRAQ 20061019 Re: Flaw in Firefox 2.0 RC2
BUGTRAQ 20061025 Mozilla Firefox JavaScript Handler Race Condition Memory Corruption Vulnerability
BUGTRAQ 20060915 rPSA-2006-0169-1 firefox thunderbird
MISC http://lcamtuf.coredump.cx/ffoxdie.html
MISC http://lcamtuf.coredump.cx/ffoxdie3.html
MISC http://www.securiteam.com/securitynews/5VP0M0AJFW.html
MISC http://www.pianetapc.it/view.php?id=770
CONFIRM http://www.mozilla.org/security/announce/2006/mfsa2006-59.html
CONFIRM https://bugzilla.mozilla.org/show_bug.cgi?id=348514
CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2006-224.htm
CONFIRM https://issues.rpath.com/browse/RPL-640
GENTOO GLSA-200609-19
GENTOO GLSA-200610-01
GENTOO GLSA-200610-04
HP HPSBUX02153
HP SSRT061181
MANDRIVA MDKSA-2006:168
MANDRIVA MDKSA-2006:169
REDHAT RHSA-2006:0676
REDHAT RHSA-2006:0677
REDHAT RHSA-2006:0675
SGI 20060901-01-P
SUSE SUSE-SA:2006:054
UBUNTU USN-350-1
UBUNTU USN-351-1
UBUNTU USN-352-1
UBUNTU USN-354-1
BID 19534
BID 19488
OVAL oval:org.mitre.oval:def:9528
VUPEN ADV-2006-3617
VUPEN ADV-2007-1198
VUPEN ADV-2006-3748
VUPEN ADV-2008-0083
SECTRACK 1016846
SECTRACK 1016847
SECTRACK 1016848
SECUNIA 21513
SECUNIA 21906
SECUNIA 21949
SECUNIA 21915
SECUNIA 21916
SECUNIA 21939
SECUNIA 21940
SECUNIA 21950
SECUNIA 22036
SECUNIA 22001
SECUNIA 22025
SECUNIA 22055
SECUNIA 22074
SECUNIA 22088
SECUNIA 22210
SECUNIA 22274
SECUNIA 22391
SECUNIA 22422
SECUNIA 22056
SECUNIA 22195
SECUNIA 24711
SECUNIA 22066

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.