1 results (0.003 seconds)
CVSS: 8.8EPSS: 35%CPEs: 28EXPL: 1
CVSS: 8.8EPSS: 35%CPEs: 28EXPL: 1CVE-2006-4253 – Mozilla Firefox 1.0.x - JavaScript Handler Race Condition Memory Corruption
https://notcve.org/view.php?id=CVE-2006-4253
21 Aug 2006 — Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple Javascript timed events that load a deeply nested XML file, followed by redirecting the browser to another page, which leads to a concurrency failure that causes structures to be freed incorrectly, as demonstrated by (1) ffoxdie and (2) ffoxdie3. NOTE: it has been reported that Netscape 8.1 and K-Meleon 1.0.1 are also affected by ffoxd... • https://www.exploit-db.com/exploits/28380 • CWE-264: Permissions, Privileges, and Access Controls •