CVE-2006-3806 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2006-3806 Interim 1 5 2024-09-15T02:42:39Z current 2021-05-30T12:36:24Z 2024-09-15T02:42:39Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2006-3806 Multiple integer overflows in the Javascript engine in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code via vectors involving (1) long strings in the toSource method of the Object, Array, and String objects; and (2) unspecified "string function arguments." The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ATP3X664KJTQVNVZKXGCWB7IUOQA2NRK/#ATP3X664KJTQVNVZKXGCWB7IUOQA2NRK E-Mail link for SUSE-SA:2006:048 https://www.suse.com/support/security/rating/ SUSE Security Ratings Multiple integer overflows in the Javascript engine in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code via vectors involving (1) long strings in the toSource method of the Object, Array, and String objects; and (2) unspecified "string function arguments." CVE-2006-3806 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P