Vulnerability Description
Multiple unspecified vulnerabilities in the layout engine for Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allow remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via unknown attack vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mozilla | Firefox | <= 1.5.0.8 |
| Mozilla | Seamonkey | <= 1.5.0.8 |
| Mozilla | Thunderbird | <= 1.5.0.8 |
References
- ftp://patches.sgi.com/support/free/security/advisories/20061202-01-P.asc
- http://fedoranews.org/cms/node/2297
- http://fedoranews.org/cms/node/2338
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742
- http://rhn.redhat.com/errata/RHSA-2006-0758.htmlVendor Advisory
- http://rhn.redhat.com/errata/RHSA-2006-0759.htmlVendor Advisory
- http://rhn.redhat.com/errata/RHSA-2006-0760.html
- http://secunia.com/advisories/23282Vendor Advisory
- http://secunia.com/advisories/23420Vendor Advisory
- http://secunia.com/advisories/23422Vendor Advisory
- http://secunia.com/advisories/23433Vendor Advisory
- http://secunia.com/advisories/23439Vendor Advisory
- http://secunia.com/advisories/23440Vendor Advisory
- http://secunia.com/advisories/23468Vendor Advisory
- http://secunia.com/advisories/23514Vendor Advisory
FAQ
What is CVE-2006-6497?
CVE-2006-6497 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Multiple unspecified vulnerabilities in the layout engine for Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allow remote attackers to...
How severe is CVE-2006-6497?
CVE-2006-6497 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-6497?
Check the references section above for vendor advisories and patch information. Affected products include: Mozilla Firefox, Mozilla Seamonkey, Mozilla Thunderbird.