Status Tracking Note TRTA06-107A

Mozilla Products Contain Multiple Vulnerabilities

Overview

The Mozilla web browser and derived products contain several vulnerabilities, the most serious of which could allow a remote attacker to execute arbitrary code on an affected system.
Event Information


Date (UTC)Description
2006-05-02 19:30 Mozilla
Mozilla Firefox 1.5.0.3 Release
2006-04-21 Mozilla
Mozilla Thunderbird 1.5.0.2 Release
2006-04-17 19:39 US-CERT
TA06-107A: Mozilla Products Contain Multiple Vulnerabilities
Via US-CERT Mailing List
2006-04-13 Mozilla
Mozilla Firefox 1.5.0.2 Release
2006-02-28 Zero Day Initiative (ZDI)
ZDI-06-011: Mozilla Firefox Table Rebuilding Code Execution Vulnerability
Vulnerability reported to vendor
2006-01-31 Zero Day Initiative (ZDI)
ZDI-06-010: Mozilla Firefox CSS Letter-Spacing Heap Overflow Vulnerability
Vulnerability reported to vendor
2005-12-13 Zero Day Initiative (ZDI)
ZDI-06-009: Mozilla Firefox Tag Parsing Code Execution Vulnerability
Vulnerability reported to vendor


Date first published (UTC): 2006-04-18T11:04+00:00
Date last updated (UTC): 2006-06-04T09:54+00:00