{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/2570?format=json","vulnerability_id":"VCID-rmmr-446e-a3fe","summary":"As part of the Firefox 1.5 release we fixed several crash bugs to\nimprove the stability of the product. Some of these crashes showed\nevidence of memory corruption that we presume could be exploited\nto run arbitrary code and have been applied to the Firefox 1.0.x\nand Mozilla Suite 1.7.x releasesWhile fixing an unexploitable recursion-induced crash Bernd Mielke\ndiscovered that the CSS border-rendering code could potentially write\npast the end of an array.Alden D'Souza reported a crash when using an extremely large\nregular expression in JavaScript. This was tracked down to a 16-bit\ninteger overflow that could potentially cause the browser to interpret\nattacker supplied data as JavaScript bytecode.Martijn Wargers found two potentially exploitable crashes when programmatically\nchanging the -moz-grid and -moz-grid-group display styles.Bob Clary found a memory corruption crash using the InstallTrigger.install()\nmethod that was introduced in Firefox 1.0.7 by one of the regression\nfixes described in MFSA 2005-58.Thunderbird shares the browser engine with Firefox\nand could be vulnerable if JavaScript were to be enabled in mail. This is not\nthe default setting and we strongly discourage users from running\nJavaScript in mail.","aliases":[{"alias":"CVE-2006-1739"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1102?format=json","purl":"pkg:mozilla/Firefox@1.0.8","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@1.0.8"},{"url":"http://public2.vulnerablecode.io/api/packages/1101?format=json","purl":"pkg:mozilla/Firefox@1.5.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@1.5.0"},{"url":"http://public2.vulnerablecode.io/api/packages/1106?format=json","purl":"pkg:mozilla/Mozilla%20Suite@1.7.13","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Mozilla%2520Suite@1.7.13"},{"url":"http://public2.vulnerablecode.io/api/packages/1105?format=json","purl":"pkg:mozilla/SeaMonkey@1.0.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/SeaMonkey@1.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/1104?format=json","purl":"pkg:mozilla/Thunderbird@1.0.8","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@1.0.8"},{"url":"http://public2.vulnerablecode.io/api/packages/1103?format=json","purl":"pkg:mozilla/Thunderbird@1.5.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@1.5.0"}],"affected_packages":[],"references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1739","reference_id":"CVE-2006-1739","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1739"},{"reference_url":"https://www.mozilla.org/en-US/security/advisories/mfsa2006-11","reference_id":"mfsa2006-11","reference_type":"","scores":[{"value":"critical","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mozilla.org/en-US/security/advisories/mfsa2006-11"}],"weaknesses":[],"exploits":[],"severity_range_score":"9.0 - 10.0","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rmmr-446e-a3fe"}