Launchpad.net

CVE 2006-6505

Multiple heap-based buffer overflows in Mozilla Thunderbird before 1.5.0.9 and SeaMonkey before 1.0.7 allow remote attackers to execute arbitrary code via (1) external message modies with long Content-Type headers or (2) long RFC2047-encoded (MIME non-ASCII) headers.

Related bugs and status

CVE-2006-6505 (Candidate) is related to these bugs:

Bug #76682: Please update mozilla-thunderbird

Summary				In	Importance	Status
	76682	Please update mozilla-thunderbird		mozilla-thunderbird (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.mozilla.org...
REDHAT: RHSA-2006:0759
REDHAT: RHSA-2006:0760
SECTRACK: 1017419
SECTRACK: 1017420
SECUNIA: 23433
SECUNIA: 23439
CONFIRM: https://issues.rpath.c...
CERT: TA06-354A
CERT-VN: VU#887332
BID: 21668
SECUNIA: 23420
SECUNIA: 23422
SECUNIA: 23468
SGI: 20061202-01-P
SECUNIA: 23514
SUSE: SUSE-SA:2006:080
FEDORA: FEDORA-2006-1491
FEDORA: FEDORA-2007-004
GENTOO: GLSA-200701-03
UBUNTU: USN-400-1
SECUNIA: 23601
SECUNIA: 23545
SECUNIA: 23591
SECUNIA: 23598
SECUNIA: 23618
GENTOO: GLSA-200701-04
SECUNIA: 23692
SUSE: SUSE-SA:2007:006
SECUNIA: 23672
SUNALERT: 102800
SECUNIA: 24108
DEBIAN: DSA-1265
SECUNIA: 24390
MANDRIVA: MDKSA-2007:011
VUPEN: ADV-2006-5068
VUPEN: ADV-2007-0573
VUPEN: ADV-2008-0083
OVAL: oval:org.mitre.oval:de...
BUGTRAQ: 20070102 rPSA-2006-023...
BUGTRAQ: 20061222 rPSA-2006-023...