Launchpad.net

CVE 2006-1790

A regression fix in Mozilla Firefox 1.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the InstallTrigger.install method, which leads to memory corruption.

Related bugs and status

CVE-2006-1790 (Candidate) is related to these bugs:

Bug #41120: Update to 1.0.8 for Warty-Breezy

		In	Importance	Status
41120	Update to 1.0.8 for Warty-Breezy	mozilla-thunderbird (Ubuntu)	High	Invalid
41120	Update to 1.0.8 for Warty-Breezy	mozilla-thunderbird (Ubuntu Hoary)	Wishlist	Fix Released
41120	Update to 1.0.8 for Warty-Breezy	mozilla-thunderbird (Ubuntu Warty)	Wishlist	Invalid
41120	Update to 1.0.8 for Warty-Breezy	mozilla-thunderbird (Ubuntu Breezy)	Medium	Fix Released
41120	Update to 1.0.8 for Warty-Breezy	Juniper Openstack	Medium	In Progress
41120	Update to 1.0.8 for Warty-Breezy	Juniper Openstack trunk	Medium	In Progress

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.mozilla.org...
REDHAT: RHSA-2006:0328
BID: 17516
SECUNIA: 19631
DEBIAN: DSA-1044
GENTOO: GLSA-200604-12
SECUNIA: 19759
SECUNIA: 19794
DEBIAN: DSA-1046
GENTOO: GLSA-200604-18
SGI: 20060404-01-U
SECUNIA: 19811
SECUNIA: 19852
SECUNIA: 19862
SECUNIA: 19863
SECUNIA: 19902
DEBIAN: DSA-1051
SECUNIA: 19950
SECUNIA: 19941
FEDORA: FEDORA-2006-410
FEDORA: FEDORA-2006-411
SUSE: SUSE-SA:2006:021
SECUNIA: 19714
SECUNIA: 19721
SECUNIA: 19746
REDHAT: RHSA-2006:0329
REDHAT: RHSA-2006:0330
SCO: SCOSA-2006.26
SECUNIA: 21033
SUNALERT: 102550
SECUNIA: 21622
CONFIRM: http://support.avaya.c...
GENTOO: GLSA-200605-09
SECUNIA: 19729
SECUNIA: 19780
SECUNIA: 20051
MANDRIVA: MDKSA-2006:075
MANDRIVA: MDKSA-2006:076
SUNALERT: 228526
VUPEN: ADV-2006-1356
XF: mozilla-installtrigger...
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...
UBUNTU: USN-275-1
UBUNTU: USN-276-1
UBUNTU: USN-271-1
FEDORA: FLSA:189137-1
FEDORA: FLSA:189137-2
HP: HPSBUX02122
HP: SSRT061158