Race condition in the JavaScript garbage collection in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code by causing the garbage collector to delete a temporary variable while it is still being used during the creation of a new Function object.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2006-07-27T19:00:00
Updated: 2018-10-17T20:57:01
Reserved: 2006-07-24T00:00:00
Link: CVE-2006-3803
JSON object: View
NVD Information
Status : Modified
Published: 2006-07-27T19:04:00.000
Modified: 2018-10-17T21:30:27.437
Link: CVE-2006-3803
JSON object: View
Redhat Information
No data.
CWE