Vulnerabilities > CVE-2006-2538 - Denial-Of-Service vulnerability in Ie Tab

CVSS 2.6 - LOW

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

high complexity

ie-tab

mozilla

NVD

Published: 2006-05-22

Updated: 2018-10-18

Summary

IE Tab 1.0.9 plugin for Mozilla Firefox 1.5.0.3 allows remote user-assisted attackers to cause a denial of service (application crash), possibly due to a null dereference, via certain Javascript, as demonstrated using a url parameter to the content/reloaded.html page in a chrome:// URI. Some third-party researchers claim that they are unable to reproduce this vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Ie_Tab IE TAB IE TAB 1.0.9	1
Application	Mozilla Mozilla Firefox 1.5.0.3	1

References

http://www.securityfocus.com/archive/1/434280/100/0/threaded
http://www.securityfocus.com/archive/1/434519/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/26540