Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2006-3805

The Javascript engine in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary code via vectors involving garbage collection that causes deletion of a temporary object that is still being used.

  • Published: Jul 27, 2006
  • Updated: Apr 13, 2023
  • CVE: CVE-2006-3805
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
mozilla / seamonkey 1.0.1 1.0.1.x
mozilla / firefox 1.5.0.3 1.5.0.3.x
mozilla / seamonkey 1.0 1.0.x
mozilla / firefox 1.5 1.5.x
mozilla / seamonkey 1.0.2 1.0.2.x
mozilla / thunderbird 1.5 1.5.x
mozilla / thunderbird 1.5.0.2 1.5.0.2.x
mozilla / firefox 1.5.0.2 1.5.0.2.x
mozilla / firefox 1.5.0.4 1.5.0.4.x
mozilla / firefox 1.5.0.1 1.5.0.1.x
mozilla / thunderbird 1.5.0.4 1.5.0.4.x