CVE-2006-1993

Vulnerability Description

Mozilla Firefox 1.5.0.2, when designMode is enabled, allows remote attackers to cause a denial of service and possibly execute arbitrary code via certain Javascript that is not properly handled by the contentWindow.focus method in an iframe, which causes a reference to a deleted controller context object. NOTE: this was originally claimed to be a buffer overflow in (1) js320.dll and (2) xpcom_core.dll, but the vendor disputes this claim.

CVSS Score

Affected Products

Related Weaknesses (CWE)

References

• http://secunia.com/advisories/19802PatchVendor Advisory
• http://secunia.com/advisories/20015Vendor Advisory
• http://secunia.com/advisories/20019Vendor Advisory
• http://secunia.com/advisories/20070Vendor Advisory
• http://secunia.com/advisories/20214Vendor Advisory
• http://secunia.com/advisories/22066Vendor Advisory
• http://securityreason.com/securityalert/780
• http://securitytracker.com/id?1015981Exploit
• http://www.debian.org/security/2006/dsa-1053
• http://www.debian.org/security/2006/dsa-1055
• http://www.gentoo.org/security/en/glsa/glsa-200605-06.xml
• http://www.kb.cert.org/vuls/id/866300Third Party AdvisoryUS Government Resource
• http://www.mozilla.org/security/announce/2006/mfsa2006-30.htmlVendor Advisory
• http://www.securident.com/vuln/ff.txtExploit
• http://www.securityfocus.com/archive/1/431878/100/0/threaded