CVE-2006-0294

Name of the Vulnerable Software and Affected Versions Mozilla Firefox versions prior to 1.5.0.1 Thunderbird version 1.5 SeaMonkey versions prior to 1.0

Description The issue allows remote attackers to execute arbitrary code by changing an element's style from position:relative to position:static, which causes Gecko to operate on freed memory.

Recommendations For Mozilla Firefox versions prior to 1.5.0.1, update to version 1.5.0.1 or later. For Thunderbird version 1.5, disable Javascript in mail to mitigate the risk. For SeaMonkey versions prior to 1.0, update to version 1.0 or later.