Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2006-4253

Disclosure Date: August 21, 2006
CVE-2006-4253
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple Javascript timed events that load a deeply nested XML file, followed by redirecting the browser to another page, which leads to a concurrency failure that causes structures to be freed incorrectly, as demonstrated by (1) ffoxdie and (2) ffoxdie3. NOTE: it has been reported that Netscape 8.1 and K-Meleon 1.0.1 are also affected by ffoxdie. Mozilla confirmed to CVE that ffoxdie and ffoxdie3 trigger the same underlying vulnerability. NOTE: it was later reported that Firefox 2.0 RC2 and 1.5.0.7 are also affected.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
n/a
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

  • k-meleon project,
  • mozilla,
  • netscape

Products

  • firefox 0.10,
  • firefox 0.10.1,
  • firefox 0.8,
  • firefox 0.9,
  • firefox 0.9.1,
  • firefox 0.9.2,
  • firefox 0.9.3,
  • firefox 1.0,
  • firefox 1.0.1,
  • firefox 1.0.2,
  • firefox 1.0.3,
  • firefox 1.0.4,
  • firefox 1.0.5,
  • firefox 1.0.6,
  • firefox 1.0.7,
  • firefox 1.0.8,
  • firefox 1.5,
  • firefox 1.5.0.1,
  • firefox 1.5.0.2,
  • firefox 1.5.0.3,
  • firefox 1.5.0.4,
  • firefox 1.5.0.5,
  • firefox 1.5.0.6,
  • k-meleon 1.0.1,
  • navigator 8.1

References

Canonical
CVE-2006-4253 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4253)
BID-19534 (http://www.securityfocus.com/bid/19534)
BID-19488 (http://www.securityfocus.com/bid/19488)
Advisory
20061017 Flaw in Firefox 2.0 RC2 (http://www.securityfocus.com/archive/1/448956/100/100/threaded)
20060817 Re: [VulnWatch] Re: Concurrency-related vulnerabilities in browsers - expect problems (http://www.securityfocus.com/archive/1/443500/100/100/threaded)
SECTRACK-1016847 (http://securitytracker.com/id?1016847)
SECUNIA-22391 (http://secunia.com/advisories/22391)
ADV-2006-3748 (http://www.vupen.com/english/advisories/2006/3748)
http://www.redhat.com/support/errata/RHSA-2006-0676.html
http://www.mozilla.org/security/announce/2006/mfsa2006-59.html
SECUNIA-22055 (http://secunia.com/advisories/22055)
SECUNIA-22195 (http://secunia.com/advisories/22195)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9528
USN-352-1 (http://www.ubuntu.com/usn/usn-352-1)
SECUNIA-21513 (http://secunia.com/advisories/21513)
SECUNIA-21950 (http://secunia.com/advisories/21950)
USN-351-1 (http://www.ubuntu.com/usn/usn-351-1)
SECUNIA-22025 (http://secunia.com/advisories/22025)
SECUNIA-22056 (http://secunia.com/advisories/22056)
http://www.mandriva.com/security/advisories?name=MDKSA-2006:168
20060812 Concurrency-related vulnerabilities in browsers - expect problems (http://www.securityfocus.com/archive/1/443020/100/100/threaded)
SECUNIA-22210 (http://secunia.com/advisories/22210)
SECUNIA-24711 (http://secunia.com/advisories/24711)
GLSA-200610-04 (http://security.gentoo.org/glsa/glsa-200610-04.xml)
http://support.avaya.com/elmodocs2/security/ASA-2006-224.htm
ADV-2008-0083 (http://www.vupen.com/english/advisories/2008/0083)
20060817 RE: [VulnWatch] Re: Concurrency-related vulnerabilities in browsers - expect problems (http://www.securityfocus.com/archive/1/443528/100/0/threaded)
SECUNIA-21939 (http://secunia.com/advisories/21939)
SECTRACK-1016848 (http://securitytracker.com/id?1016848)
ADV-2006-3617 (http://www.vupen.com/english/advisories/2006/3617)
SECUNIA-21915 (http://secunia.com/advisories/21915)
ADV-2007-1198 (http://www.vupen.com/english/advisories/2007/1198)
20061006 Re: Concurrency-related vulnerabilities in browsers - expect problems (http://www.securityfocus.com/archive/1/447837/100/200/threaded)
http://www.redhat.com/support/errata/RHSA-2006-0677.html
GLSA-200609-19 (http://security.gentoo.org/glsa/glsa-200609-19.xml)
SSRT061181 (http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00771742)
20061017 Re: Flaw in Firefox 2.0 RC2 (http://www.securityfocus.com/archive/1/448984/100/100/threaded)
SECUNIA-22274 (http://secunia.com/advisories/22274)
http://www.redhat.com/support/errata/RHSA-2006-0675.html
SECUNIA-21940 (http://secunia.com/advisories/21940)
SECUNIA-22001 (http://secunia.com/advisories/22001)
20060915 rPSA-2006-0169-1 firefox thunderbird (http://www.securityfocus.com/archive/1/446140/100/0/threaded)
USN-350-1 (http://www.ubuntu.com/usn/usn-350-1)
SECUNIA-21906 (http://secunia.com/advisories/21906)
20061019 Re: Flaw in Firefox 2.0 RC2 (http://www.securityfocus.com/archive/1/449245/100/100/threaded)
GLSA-200610-01 (http://security.gentoo.org/glsa/glsa-200610-01.xml)
SECUNIA-22074 (http://secunia.com/advisories/22074)
SECUNIA-22066 (http://secunia.com/advisories/22066)
SECUNIA-22088 (http://secunia.com/advisories/22088)
20060815 Re: Concurrency-related vulnerabilities in browsers - expect problems (http://www.securityfocus.com/archive/1/443306/100/100/threaded)
SECUNIA-21949 (http://secunia.com/advisories/21949)
http://www.novell.com/linux/security/advisories/2006_54_mozilla.html
https://bugzilla.mozilla.org/show_bug.cgi?id=348514
https://issues.rpath.com/browse/RPL-640
20061005 Re: Concurrency-related vulnerabilities in browsers - expect problems (http://www.securityfocus.com/archive/1/447840/100/200/threaded)
20061025 Mozilla Firefox JavaScript Handler Race Condition Memory Corruption Vulnerability (http://www.securityfocus.com/archive/1/449726/100/0/threaded)
SECUNIA-22036 (http://secunia.com/advisories/22036)
SECTRACK-1016846 (http://securitytracker.com/id?1016846)
USN-354-1 (http://www.ubuntu.com/usn/usn-354-1)
20061023 Flaw in Firefox 2.0 Final (http://www.securityfocus.com/archive/1/449487/100/0/threaded)
SECUNIA-22422 (http://secunia.com/advisories/22422)
http://www.mandriva.com/security/advisories?name=MDKSA-2006:169
SECUNIA-21916 (http://secunia.com/advisories/21916)
Miscellaneous
http://lcamtuf.coredump.cx/ffoxdie.html
http://www.pianetapc.it/view.php?id=770
http://lcamtuf.coredump.cx/ffoxdie3.html
http://www.securiteam.com/securitynews/5VP0M0AJFW.html

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis