CVE-2006-2781

Publication date 2 June 2006

Last updated 24 July 2024


Ubuntu priority

Double free vulnerability in nsVCard.cpp in Mozilla Thunderbird before 1.5.0.4 and SeaMonkey before 1.0.2 allows remote attackers to cause a denial of service (hang) and possibly execute arbitrary code via a VCard that contains invalid base64 characters.

Status

Package Ubuntu Release Status
mozilla-thunderbird 7.04 feisty
Fixed 1.5.0.13-0ubuntu0.7.04
6.10 edgy
Fixed 1.5.0.13-0ubuntu0.6.10
6.06 LTS dapper
Fixed 1.5.0.13-0ubuntu0.6.06

References

Related Ubuntu Security Notices (USN)

    • USN-323-1
    • mozilla vulnerabilities
    • 26 July 2006
    • USN-297-1
    • Thunderbird vulnerabilities
    • 14 June 2006
    • USN-297-3
    • Thunderbird vulnerabilities
    • 26 July 2006

Other references