Launchpad.net

CVE 2006-2781

Double free vulnerability in nsVCard.cpp in Mozilla Thunderbird before 1.5.0.4 and SeaMonkey before 1.0.2 allows remote attackers to cause a denial of service (hang) and possibly execute arbitrary code via a VCard that contains invalid base64 characters.

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.mozilla.org...
SECUNIA: 20394
BID: 18228
SECTRACK: 1016214
SECUNIA: 20382
GENTOO: GLSA-200606-21
SUSE: SUSE-SA:2006:035
SECUNIA: 20709
DEBIAN: DSA-1118
REDHAT: RHSA-2006:0578
SECUNIA: 21134
SECUNIA: 21183
SECUNIA: 21178
SECUNIA: 21210
DEBIAN: DSA-1134
REDHAT: RHSA-2006:0611
REDHAT: RHSA-2006:0609
SECUNIA: 21269
SECUNIA: 21336
SECUNIA: 21324
SECUNIA: 21607
REDHAT: RHSA-2006:0594
SECUNIA: 21631
SECUNIA: 22065
MANDRIVA: MDKSA-2006:146
VUPEN: ADV-2006-2106
VUPEN: ADV-2006-3749
XF: mozilla-vcard-doublefr...
OVAL: oval:org.mitre.oval:de...
UBUNTU: USN-297-1
UBUNTU: USN-297-3
UBUNTU: USN-323-1
BUGTRAQ: 20060602 rPSA-2006-009...
HP: HPSBUX02156
HP: SSRT061236

Launchpad.net

CVE 2006-2781

Related bugs

References