HTTP: Mozilla Firefox XPCOM Memory Corruption
This signature detects attempts to exploit a known vulnerability against Mozilla Firefox. A successful attack can lead to memory corruption and arbitrary code execution.
Extended Description
Various Mozilla Foundation products are prone to a memory-corruption vulnerability. This issue occurs because the applications fail to handle simultaneous XPCOM events that would cause the deletion of the timer object. An attacker can exploit this issue to execute arbitrary code. This issue was previously discussed in BID 19181 (Mozilla Multiple Products Remote Vulnerabilities). It has been assigned a separate BID because new information has become available.
Affected Products
Mozilla thunderbird
Short Name
HTTP:STC:MOZILLA:FIREFOX-XPCOM
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2006-3113 Corruption Firefox Memory Mozilla XPCOM bid:19197
Release Date
04/05/2013
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3339
False Positive
Unknown
Vendors
Red_hat
Suse
Gentoo
Rpath
Mozilla
Slackware
Ubuntu
Mandriva
CVSS Score
7.5