Vulnerability Description
Mozilla Thunderbird 1.5 allows user-assisted attackers to cause an unspecified denial of service by tricking the user into importing an LDIF file with a long field into the address book, as demonstrated by a long homePhone field.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mozilla | Thunderbird | 1.5 |
References
- http://archives.neohapsis.com/archives/fulldisclosure/2006-02/0399.htmlExploit
- http://securityreason.com/securityalert/469
- http://www.securityfocus.com/archive/1/425602/100/0/threaded
- http://www.securityfocus.com/bid/16716Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24810
- http://archives.neohapsis.com/archives/fulldisclosure/2006-02/0399.htmlExploit
- http://securityreason.com/securityalert/469
- http://www.securityfocus.com/archive/1/425602/100/0/threaded
- http://www.securityfocus.com/bid/16716Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24810
FAQ
What is CVE-2006-0836?
CVE-2006-0836 is a vulnerability with a CVSS score of 2.6 (LOW). Mozilla Thunderbird 1.5 allows user-assisted attackers to cause an unspecified denial of service by tricking the user into importing an LDIF file with a long field into the address book, as demonstrat...
How severe is CVE-2006-0836?
CVE-2006-0836 has been rated LOW with a CVSS base score of 2.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-0836?
Check the references section above for vendor advisories and patch information. Affected products include: Mozilla Thunderbird.