Mozilla : Security Vulnerabilities, CVEs, Published In June 2006 (Denial of service)
Double free vulnerability in the getRawDER function for nsIX509Cert in Firefox allows remote attackers to cause a denial of service (hang) and possibly execute arbitrary code via certain Javascript code.
Max CVSS
7.5
EPSS Score
25.44%
Published
2006-06-02
Updated
2018-10-03
Double free vulnerability in nsVCard.cpp in Mozilla Thunderbird before 1.5.0.4 and SeaMonkey before 1.0.2 allows remote attackers to cause a denial of service (hang) and possibly execute arbitrary code via a VCard that contains invalid base64 characters.
Max CVSS
6.4
EPSS Score
31.66%
Published
2006-06-02
Updated
2018-10-18
Integer overflow in Mozilla Firefox and Thunderbird before 1.5.0.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via "jsstr tagify," which leads to memory corruption.
Max CVSS
9.3
EPSS Score
50.81%
Published
2006-06-02
Updated
2018-10-18
Mozilla Firefox and Thunderbird before 1.5.0.4 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) nested <option> tags in a select tag, (2) a DOMNodeRemoved mutation event, (3) "Content-implemented tree views," (4) BoxObjects, (5) the XBL implementation, (6) an iframe that attempts to remove itself, which leads to memory corruption.
Max CVSS
9.3
EPSS Score
97.22%
Published
2006-06-02
Updated
2018-10-18
Unspecified versions of Mozilla Firefox allow remote attackers to cause a denial of service (crash) via a web page that contains a large number of nested marquee tags. NOTE: a followup post indicated that the initial report could not be verified.
Max CVSS
5.0
EPSS Score
59.69%
Published
2006-06-01
Updated
2018-10-18
5 vulnerabilities found