Launchpad.net

CVE 2006-6500

Heap-based buffer overflow in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by setting the CSS cursor to certain images that cause an incorrect size calculation when converting to a Windows bitmap.

Related bugs and status

CVE-2006-6500 (Candidate) is related to these bugs:

Bug #77333: Firefox 1.5.0.9 still missing in Dapper

Summary				In	Importance	Status
	77333	Firefox 1.5.0.9 still missing in Dapper		firefox (Ubuntu)	Undecided	Fix Released
	77333	Firefox 1.5.0.9 still missing in Dapper		mozilla-thunderbird (Ubuntu)	Undecided	Fix Released

Bug #77334: Security Update (Firefox)2.0.0.1 is out - since Dec19 - merge for Edgy required

Summary				In	Importance	Status
	77334	Security Update (Firefox)2.0.0.1 is out - since Dec19 - merge for Edgy required		firefox (Ubuntu)	Undecided	Fix Released

Bug #78587: please sync xulrunner 1.8.0.9-1 from Debian unstable (main)

Summary				In	Importance	Status
	78587	please sync xulrunner 1.8.0.9-1 from Debian unstable (main)		xulrunner (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.mozilla.org...
SECTRACK: 1017399
SECTRACK: 1017400
SECTRACK: 1017401
CERT: TA06-354A
BID: 21668
SECUNIA: 23282
SECUNIA: 23420
SECUNIA: 23422
SUSE: SUSE-SA:2006:080
GENTOO: GLSA-200701-02
GENTOO: GLSA-200701-03
SECUNIA: 23545
SECUNIA: 23598
SECUNIA: 23614
GENTOO: GLSA-200701-04
SECUNIA: 23692
SUSE: SUSE-SA:2007:006
CERT-VN: VU#722244
SECUNIA: 23672
MANDRIVA: MDKSA-2007:010
MANDRIVA: MDKSA-2007:011
HP: HPSBUX02153
HP: SSRT061181
VUPEN: ADV-2006-5068
VUPEN: ADV-2008-0083