CVE-2006-3113

Published: 27 July 2006

Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via simultaneous XPCOM events, which causes a timer object to be deleted in a way that triggers memory corruption.

Priority

Status

Package	Release	Status
firefox Launchpad, Ubuntu, Debian	Upstream	Needs triage






firefox-granparadiso Launchpad, Ubuntu, Debian	Upstream	Needs triage






lightning-sunbird Launchpad, Ubuntu, Debian	Upstream	Needs triage






midbrowser Launchpad, Ubuntu, Debian	Upstream	Needs triage






mozilla-thunderbird Launchpad, Ubuntu, Debian	Upstream	Needs triage






xulrunner Launchpad, Ubuntu, Debian	Upstream	Needs triage

References

https://ubuntu.com/security/notices/USN-350-1
https://ubuntu.com/security/notices/USN-329-1
https://ubuntu.com/security/notices/USN-327-1
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3113
NVD
Launchpad
Debian

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Extended Security Maintenance

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

CVE-2006-3113

Unknown

Status

References

Join the discussion

Canonical is offering Extended Security Maintenance

Further reading