Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2006-0298

The XML parser in Mozilla Firefox before 1.5.0.1 and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) and possibly read sensitive data via unknown attack vectors that trigger an out-of-bounds read.

Related bugs and status

CVE-2006-0298 (Candidate) is related to these bugs:

Bug #41096: update to thunderbird 1.5.0.2

Summary				In	Importance	Status
	41096	update to thunderbird 1.5.0.2		mozilla-thunderbird (Ubuntu)	Critical	Fix Released

See the

CVE page on Mitre.org for more details.

References

BID: 16476
SECUNIA: 18700
SECUNIA: 18704
SECTRACK: 1015570
CONFIRM: http://www.mozilla.org...
SECUNIA: 22065
VUPEN: ADV-2006-0413
VUPEN: ADV-2006-3749
XF: mozilla-xml-parser-dos...
OVAL: oval:org.mitre.oval:de...
HP: HPSBUX02156
HP: SSRT061236