Home > Vulnerability Database > CVE-2006-6497

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2006-6497

Date: December 19, 2006

Multiple unspecified vulnerabilities in the layout engine for Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allow remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via unknown attack vectors.

Severity Score

5.6

Related Resources (61)

Url: http://www.kb.cert.org/vuls/id/427972

Url: http://rhn.redhat.com/errata/RHSA-2006-0760.html

Url: http://secunia.com/advisories/23282

Url: http://rhn.redhat.com/errata/RHSA-2006-0758.html

Url: http://securitytracker.com/id?1017405

Url: http://securitytracker.com/id?1017406

Url: http://www.securityfocus.com/bid/21668

Url: http://www.vupen.com/english/advisories/2007/1463

Url: http://secunia.com/advisories/23514

Url: http://secunia.com/advisories/23439

Url: http://www.us-cert.gov/cas/techalerts/TA06-354A.html

Url: http://secunia.com/advisories/23591

Url: http://secunia.com/advisories/23672

Url: http://www.novell.com/linux/security/advisories/2006_80_mozilla.html

Url: http://secunia.com/advisories/23433

Url: http://secunia.com/advisories/23598

Url: http://www.mozilla.org/security/announce/2006/mfsa2006-68.html

Url: https://nvd.nist.gov/vuln/detail/CVE-2006-6497

Url: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742

Url: ftp://patches.sgi.com/support/free/security/advisories/20061202-01-P.asc

Url: http://fedoranews.org/cms/node/2338

Url: http://www.debian.org/security/2007/dsa-1258

Url: http://www.securityfocus.com/archive/1/455145/100/0/threaded

Url: http://www.debian.org/security/2007/dsa-1253

Url: http://www.ubuntu.com/usn/usn-398-1

Url: http://www.ubuntu.com/usn/usn-398-2

Url: http://secunia.com/advisories/23601

Url: http://fedoranews.org/cms/node/2297

Url: http://secunia.com/advisories/23440

Url: https://access.redhat.com/security/cve/CVE-2006-6497

Url: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11691

Url: http://sunsolve.sun.com/search/document.do?assetkey=1-26-102885-1

Url: http://secunia.com/advisories/24390

Url: http://www.securityfocus.com/archive/1/455728/100/200/threaded

Url: http://secunia.com/advisories/23618

Url: http://www.debian.org/security/2007/dsa-1265

Url: https://issues.rpath.com/browse/RPL-883

Url: http://www.novell.com/linux/security/advisories/2007_06_mozilla.html

Url: http://www.gentoo.org/security/en/glsa/glsa-200701-03.xml

Url: http://www.vupen.com/english/advisories/2008/0083

Url: http://secunia.com/advisories/24948

Url: http://securitytracker.com/id?1017398

Url: http://secunia.com/advisories/23614

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2007:011

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2007:010

Url: http://www.ubuntu.com/usn/usn-400-1

Url: http://secunia.com/advisories/23692

Url: http://www.kb.cert.org/vuls/id/606260

Url: http://www.vupen.com/english/advisories/2006/5068

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2006-6497

Url: http://secunia.com/advisories/23468

Url: http://secunia.com/advisories/23545

Url: http://secunia.com/advisories/23589

Url: http://secunia.com/advisories/23988

Url: http://secunia.com/advisories/24078

Url: http://www.gentoo.org/security/en/glsa/glsa-200701-04.xml

Url: http://rhn.redhat.com/errata/RHSA-2006-0759.html

Url: http://secunia.com/advisories/23420

Url: http://secunia.com/advisories/23422

Url: http://security.gentoo.org/glsa/glsa-200701-02.xml

Url: https://www.mend.io/vulnerability-database/CVE-2006-6497

Severity Score

5.6

CVSS v3.1

Base Score:	5.6
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	HIGH
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

CVSS v2

Base Score:	6.8
Access Vector (AV):	NETWORK
Access Complexity (AC):	MEDIUM
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Do you need more information?

Contact Us