CVE-2006-6811
- EPSS 9.99%
- Veröffentlicht 29.12.2006 11:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:51
KsIRC 1.3.12 allows remote attackers to cause a denial of service (crash) via a long PRIVMSG string when connecting to an Internet Relay Chat (IRC) server, which causes an assertion failure and results in a NULL pointer dereference. NOTE: this issue...
CVE-2006-6499
- EPSS 3.72%
- Veröffentlicht 20.12.2006 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:14
The js_dtoa function in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 overwrites memory instead of exiting when the floating point precision is reduced, which allows remote attackers ...
CVE-2006-6500
- EPSS 8.29%
- Veröffentlicht 20.12.2006 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:15
Heap-based buffer overflow in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by setting...
CVE-2006-6501
- EPSS 2.83%
- Veröffentlicht 20.12.2006 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:15
Unspecified vulnerability in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to gain privileges and install malicious code via the watch Javascript function.
CVE-2006-6503
- EPSS 3.97%
- Veröffentlicht 20.12.2006 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:15
Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to bypass cross-site scripting (XSS) protection by changing the src attribute of an IMG element to a javascript: ...
CVE-2006-6504
- EPSS 8.6%
- Veröffentlicht 20.12.2006 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:16
Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to execute arbitrary code by appending an SVG comment DOM node to another type of document, which triggers memory corruption.
CVE-2006-5868
- EPSS 2.65%
- Veröffentlicht 22.11.2006 01:07:00
- Zuletzt bearbeitet 16.06.2026 22:32:02
Multiple buffer overflows in Imagemagick 6.0 before 6.0.6.2, and 6.2 before 6.2.4.5, has unknown impact and user-assisted attack vectors via a crafted SGI image.
CVE-2006-5779
- EPSS 75.37%
- Veröffentlicht 07.11.2006 18:07:00
- Zuletzt bearbeitet 16.06.2026 22:31:51
OpenLDAP before 2.3.29 allows remote attackers to cause a denial of service (daemon crash) via LDAP BIND requests with long authcid names, which triggers an assertion failure.
CVE-2006-5173
- EPSS 0.41%
- Veröffentlicht 17.10.2006 22:07:00
- Zuletzt bearbeitet 16.06.2026 22:30:38
Linux kernel does not properly save or restore EFLAGS during a context switch, or reset the flags when creating new threads, which allows local users to cause a denial of service (process crash), as demonstrated using a process that sets the Alignmen...
CVE-2006-4997
- EPSS 4.72%
- Veröffentlicht 10.10.2006 04:06:00
- Zuletzt bearbeitet 16.06.2026 22:30:16
The clip_mkip function in net/atm/clip.c of the ATM subsystem in Linux kernel allows remote attackers to cause a denial of service (panic) via unknown vectors that cause the ATM subsystem to access the memory of socket buffers after they are freed (f...