CVE-2006-1724 — HIGH (7.5) — White Hats Nepal

Q: How severe is CVE-2006-1724?

CVE-2006-1724 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2006-1724?

Check the references section above for vendor advisories and patch information. Affected products include: Mozilla Firefox, Mozilla Mozilla Suite, Mozilla Seamonkey, Mozilla Thunderbird, Debian Debian Linux.

Vulnerability Description

Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attack vectors related to DHTML.

CVSS Score

7.5

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Mozilla	Firefox	>= 1.0, < 1.0.8
Mozilla	Mozilla Suite	< 1.7.13
Mozilla	Seamonkey	< 1.0.1
Mozilla	Thunderbird	>= 1.0, < 1.0.8
Debian	Debian Linux	3.1

References

ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.26/SCOSA-2006.26.txtThird Party Advisory
http://secunia.com/advisories/19631Third Party Advisory
http://secunia.com/advisories/19649Third Party Advisory
http://secunia.com/advisories/19696Third Party Advisory
http://secunia.com/advisories/19714Third Party Advisory
http://secunia.com/advisories/19780Third Party Advisory
http://secunia.com/advisories/19863Third Party Advisory
http://secunia.com/advisories/19941Third Party Advisory
http://secunia.com/advisories/21033Third Party Advisory
http://secunia.com/advisories/21622Third Party Advisory
http://secunia.com/advisories/22065Third Party Advisory
http://secunia.com/advisories/22066Third Party Advisory
http://securitytracker.com/id?1015919Third Party AdvisoryVDB Entry
http://securitytracker.com/id?1015920Third Party AdvisoryVDB Entry
http://securitytracker.com/id?1015921Third Party AdvisoryVDB Entry

FAQ

What is CVE-2006-1724?

CVE-2006-1724 is a vulnerability with a CVSS score of 7.5 (HIGH). Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to cause a denial of service (c...

How severe is CVE-2006-1724?

CVE-2006-1724 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-1724?

Check the references section above for vendor advisories and patch information. Affected products include: Mozilla Firefox, Mozilla Mozilla Suite, Mozilla Seamonkey, Mozilla Thunderbird, Debian Debian Linux.