Mozilla · Firefox · CVE-2006-1737
Name of the Vulnerable Software and Affected Versions:
Mozilla Firefox versions 1.x before 1.5
Mozilla Thunderbird versions 1.x before 1.5 and 1.0.x before 1.0.8
Mozilla Suite versions prior to 1.7.13
SeaMonkey versions prior to 1.0
Description:
The issue is related to an integer overflow that can be triggered by remote attackers using JavaScript with a large regular expression, potentially leading to a denial of service (crash) and possibly the execution of arbitrary bytecode.
Recommendations:
For Mozilla Firefox versions 1.x before 1.5, update to version 1.5 or later.
For Mozilla Thunderbird versions 1.x before 1.5, update to version 1.5 or later.
For Mozilla Thunderbird versions 1.0.x before 1.0.8, update to version 1.0.8 or later.
For Mozilla Suite versions prior to 1.7.13, update to version 1.7.13 or later.
For SeaMonkey versions prior to 1.0, update to version 1.0 or later.