Release DateMar 29, 2011 |
Severityhigh |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates an attack attempt to exploit a memory corruption vulnerability in Mozilla Firefox.This issue is caused by an error in the vulnerable software when handling javascript with misused InstallTrigger.install method. It may allow remote attackers to execute arbitrary code by sending a crafted web page. |
Affected ProductsMozilla Firefox 1.0.7 |
Recommended ActionsUpgrade to the latest version,available from the web site.http://www.mozilla.com |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2006-1790 |
Reference/shttp://www.securityfocus.com/bid/17516 (BugTraq) |
