VDB
CVE-2006-0293
CVE-2006-0293
PUBLISHED
CVSS 7.5 HIGH
The function allocation code (js_NewFunction in jsfun.c) in Firefox 1.5 allows attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via user-defined methods that trigger garbage collection in a way that operates on freed objects.
EPSS 3.77% · 88.3th percentile
Risk Scores
CVSS 2.0
7.5
EPSS Score
3.77%
88.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| mozilla | firefox | 1.5 |
| n/a | n/a | n/a |
Timeline
- Feb 2, 2006 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
References
- 19902 third-party-advisory
- mozilla-javascript-memory-corruption(24430) vdb
- HPSBUX02122 vendor-advisory
- 19941 third-party-advisory
- 21622 third-party-advisory
- 19862 third-party-advisory
- 18704 third-party-advisory
- http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm url
- DSA-1051 vendor-advisory
- ADV-2006-3749 vdb
- GLSA-200604-18 vendor-advisory
- 16476 vdb
- ADV-2006-0413 vdb
- 1015570 vdb
- 18700 third-party-advisory
- 102550 vendor-advisory
- SSRT061236 vendor-advisory
- 19863 third-party-advisory
- http://www.mozilla.org/security/announce/2006/mfsa2006-01.html url
- https://bugzilla.mozilla.org/show_bug.cgi?id=322045 url
…and 8 more