CVE Database

CVE-2006-3806

Impact: Critical
Public: 2006-07-26

Details

The MITRE CVE dictionary describes this issue as:

Multiple integer overflows in the Javascript engine in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code via vectors involving (1) long strings in the toSource method of the Object, Array, and String objects; and (2) unspecified "string function arguments."

Find out more about CVE-2006-3806 from the MITRE CVE dictionary and NIST NVD.

Red Hat security errata

Platform Errata Release Date
Red Hat Enterprise Linux version 2.1 (seamonkey) RHSA-2006:0594 August 28, 2006
Red Hat Enterprise Linux version 3 (seamonkey) RHSA-2006:0608 July 27, 2006
Red Hat Enterprise Linux version 4 RHSA-2006:0609 August 02, 2006
Red Hat Enterprise Linux version 4 (firefox) RHSA-2006:0610 July 28, 2006
Red Hat Enterprise Linux version 4 (thunderbird) RHSA-2006:0611 July 29, 2006

External References

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.