CVE-2006-6504 Information

Feb 14, 2021 cve

Description

Mozilla Firefox 2.x before 2.0.0.1 1.5.x before 1.5.0.9 and SeaMonkey before 1.0.7 allows remote attackers to execute arbitrary code by appending an SVG comment DOM node to another type of document which triggers memory corruption.

Reference

ftp://patches.sgi.com/support/free/security/advisories/20061202-01-P.asc http://fedoranews.org/cms/node/2297 http://fedoranews.org/cms/node/2338 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742 http://rhn.redhat.com/errata/RHSA-2006-0758.html http://rhn.redhat.com/errata/RHSA-2006-0759.html http://rhn.redhat.com/errata/RHSA-2006-0760.html http://secunia.com/advisories/23282 http://secunia.com/advisories/23422 http://secunia.com/advisories/23433 http://secunia.com/advisories/23439 http://secunia.com/advisories/23440 http://secunia.com/advisories/23468 http://secunia.com/advisories/23514 http://secunia.com/advisories/23545 http://secunia.com/advisories/23589 http://secunia.com/advisories/23601 http://secunia.com/advisories/23614 http://secunia.com/advisories/23618 http://secunia.com/advisories/23672 http://secunia.com/advisories/23692 http://security.gentoo.org/glsa/glsa-200701-02.xml http://securitytracker.com/id?1017417 http://securitytracker.com/id?1017418 http://www.gentoo.org/security/en/glsa/glsa-200701-04.xml http://www.kb.cert.org/vuls/id/928956 http://www.mandriva.com/security/advisories?name=MDKSA-2007:010 http://www.mozilla.org/security/announce/2006/mfsa2006-73.html http://www.novell.com/linux/security/advisories/2006_80_mozilla.html http://www.novell.com/linux/security/advisories/2007_06_mozilla.html http://www.securityfocus.com/archive/1/454939/100/0/threaded http://www.securityfocus.com/archive/1/455145/100/0/threaded http://www.securityfocus.com/archive/1/455728/100/200/threaded http://www.securityfocus.com/bid/21668 http://www.ubuntu.com/usn/usn-398-1 http://www.ubuntu.com/usn/usn-398-2 http://www.us-cert.gov/cas/techalerts/TA06-354A.html http://www.vupen.com/english/advisories/2006/5068 http://www.vupen.com/english/advisories/2008/0083 http://www.zerodayinitiative.com/advisories/ZDI-06-051.html https://issues.rpath.com/browse/RPL-883 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A11077

Share on: