VDB
CVE-2006-0293
CVE-2006-0293
PUBLISHED
CVSS 7.5 HIGH
The function allocation code (js_NewFunction in jsfun.c) in Firefox 1.5 allows attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via user-defined methods that trigger garbage collection in a way that operates on freed objects.
EPSS 3.77% · 87.9th percentile
Risk Scores
CVSS v2.0
7.5
EPSS Score
3.77%
87.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| mozilla | firefox | 1.5 |
| n/a | n/a | n/a |
Timeline
- Feb 2, 2006 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 28, 2022 EPSS Score
- May 19, 2022 EPSS Score
- Sep 1, 2022 EPSS Score
- Oct 23, 2022 EPSS Score
- Dec 14, 2022 EPSS Score
- Feb 4, 2023 EPSS Score
- Mar 28, 2023 EPSS Score
- May 19, 2023 EPSS Score
- Jul 10, 2023 EPSS Score
- Aug 31, 2023 EPSS Score
References
- 19902 third-party-advisory
- mozilla-javascript-memory-corruption(24430) vdb
- HPSBUX02122 vendor-advisory
- 19941 third-party-advisory
- 21622 third-party-advisory
- 19862 third-party-advisory
- 18704 third-party-advisory
- http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm url
- DSA-1051 vendor-advisory
- ADV-2006-3749 vdb
- GLSA-200604-18 vendor-advisory
- 16476 vdb
- ADV-2006-0413 vdb
- 1015570 vdb
- 18700 third-party-advisory
- 102550 vendor-advisory
- SSRT061236 vendor-advisory
- 19863 third-party-advisory
- http://www.mozilla.org/security/announce/2006/mfsa2006-01.html url
- https://bugzilla.mozilla.org/show_bug.cgi?id=322045 url
…and 8 more