CVE-2006-2779

Published: Jun 2, 2006Modified: Apr 16, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Mozilla Firefox and Thunderbird before 1.5.0.4 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) nested <option> tags in a select tag, (2) a DOMNodeRemoved mutation event, (3) "Content-implemented tree views," (4) BoxObjects, (5) the XBL implementation, (6) an iframe that attempts to remove itself, which leads to memory corruption.

Affected (43)

Products: Mozilla: Firefox, Thunderbird

Mozilla

2 products

Firefox

Thunderbird

Configuration A

43 vulnerable

Vulnerable Software	Affected Versions
Mozilla Firefox	Version 0.10.1
Mozilla Firefox	Version 0.10
Mozilla Firefox	Version 0.8
Mozilla Firefox	Version 0.9.1
Mozilla Firefox	Version 0.9.2
Mozilla Firefox	Version 0.9.3
Mozilla Firefox	Version 0.9
Mozilla Firefox	Version 0.9 rc
Mozilla Firefox	Version 1.0.1
Mozilla Firefox	Version 1.0.2
Mozilla Firefox	Version 1.0.3
Mozilla Firefox	Version 1.0.4
Mozilla Firefox	Version 1.0.5
Mozilla Firefox	Version 1.0.6
Mozilla Firefox	Version 1.0.7
Mozilla Firefox	Version 1.0.8
Mozilla Firefox	Version 1.0
Mozilla Firefox	Version 1.5.0.2
Mozilla Firefox	Version 1.5.1
Mozilla Firefox	Version 1.5.2
Mozilla Firefox	Version 1.5.3
Mozilla Firefox	Version 1.5
Mozilla Firefox	Version 1.5 beta1
Mozilla Firefox	Version 1.5 beta2
Mozilla Firefox	Version preview_release
Mozilla Thunderbird	Version 0.6
Mozilla Thunderbird	Version 0.7.1
Mozilla Thunderbird	Version 0.7.2
Mozilla Thunderbird	Version 0.7.3
Mozilla Thunderbird	Version 0.7
Mozilla Thunderbird	Version 0.8
Mozilla Thunderbird	Version 0.9
Mozilla Thunderbird	Version 1.0.1
Mozilla Thunderbird	Version 1.0.2
Mozilla Thunderbird	Version 1.0.5
Mozilla Thunderbird	Version 1.0.6
Mozilla Thunderbird	Version 1.0.7
Mozilla Thunderbird	Version 1.0.8
Mozilla Thunderbird	Version 1.0
Mozilla Thunderbird	Version 1.5.1
Mozilla Thunderbird	Version 1.5.2
Mozilla Thunderbird	Version 1.5
Mozilla Thunderbird	Version 1.5 beta2

Related CWEs

CWE-94

Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

References (122)

http://rhn.redhat.com/errata/RHSA-2006-0609.html

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/20376

Source: cve@mitre.org

PatchVendor Advisory

http://secunia.com/advisories/20382

Source: cve@mitre.org

PatchVendor Advisory

http://secunia.com/advisories/20561

Source: cve@mitre.org

PatchVendor Advisory

http://secunia.com/advisories/20709

Source: cve@mitre.org

http://secunia.com/advisories/21134

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/21176

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/21178

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/21183

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/21188

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/21210

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/21269

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/21270

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/21324

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/21336

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/21532

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/21607

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/21631

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/21634

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/21654

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/22065

Source: cve@mitre.org

http://secunia.com/advisories/22066

Source: cve@mitre.org

http://secunia.com/advisories/27216

Source: cve@mitre.org

http://securitytracker.com/id?1016202

Source: cve@mitre.org

Patch

http://securitytracker.com/id?1016214

Source: cve@mitre.org

Patch

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102943-1

Source: cve@mitre.org

http://sunsolve.sun.com/search/document.do?assetkey=1-66-200387-1

Source: cve@mitre.org

http://www.debian.org/security/2006/dsa-1118

Source: cve@mitre.org

http://www.debian.org/security/2006/dsa-1120

Source: cve@mitre.org

http://www.debian.org/security/2006/dsa-1134

Source: cve@mitre.org

http://www.debian.org/security/2006/dsa-1159

Source: cve@mitre.org

http://www.debian.org/security/2006/dsa-1160

Source: cve@mitre.org

http://www.gentoo.org/security/en/glsa/glsa-200606-12.xml

Source: cve@mitre.org

PatchVendor Advisory

http://www.gentoo.org/security/en/glsa/glsa-200606-21.xml

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/466673

Source: cve@mitre.org

US Government Resource

http://www.mandriva.com/security/advisories?name=MDKSA-2006:143

Source: cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDKSA-2006:145

Source: cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDKSA-2006:146

Source: cve@mitre.org

http://www.mozilla.org/security/announce/2006/mfsa2006-32.html

Source: cve@mitre.org

http://www.novell.com/linux/security/advisories/2006_35_mozilla.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2006-0578.html

Source: cve@mitre.org

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2006-0594.html

Source: cve@mitre.org

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2006-0610.html

Source: cve@mitre.org

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2006-0611.html

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/archive/1/435795/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/446657/100/200/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/446658/100/200/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/18228

Source: cve@mitre.org

http://www.us-cert.gov/cas/techalerts/TA06-153A.html

Source: cve@mitre.org

PatchUS Government Resource

http://www.vupen.com/english/advisories/2006/2106

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2006/3748

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2006/3749

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/3488

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2008/0083

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/26843

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9762

Source: cve@mitre.org

https://usn.ubuntu.com/296-1/

Source: cve@mitre.org

https://usn.ubuntu.com/296-2/

Source: cve@mitre.org

https://usn.ubuntu.com/297-1/

Source: cve@mitre.org

https://usn.ubuntu.com/297-3/

Source: cve@mitre.org

https://usn.ubuntu.com/323-1/

Source: cve@mitre.org

http://rhn.redhat.com/errata/RHSA-2006-0609.html