Unrated severityNVD Advisory· Published Jul 27, 2006· Updated Jun 16, 2026
CVE-2006-3804
CVE-2006-3804
Description
Heap-based buffer overflow in Mozilla Thunderbird before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to cause a denial of service (crash) via a VCard attachment with a malformed base64 field, which copies more data than expected due to an integer underflow.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:a:mozilla:seamonkey:1.0:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:mozilla:seamonkey:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:seamonkey:1.0:*:dev:*:*:*:*:*
- (no CPE)range: <1.0.3
cpe:2.3:a:mozilla:thunderbird:1.5:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:mozilla:thunderbird:1.5:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:thunderbird:1.5.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:thunderbird:1.5.0.4:*:*:*:*:*:*:*
- (no CPE)range: <1.5.0.5
Patches
Vulnerability mechanics
References
43- secunia.com/advisories/21228nvdPatchVendor Advisory
- secunia.com/advisories/21229nvdPatchVendor Advisory
- www.securityfocus.com/bid/19181nvdPatch
- www.kb.cert.org/vuls/id/897540nvdThird Party AdvisoryUS Government Resource
- www.mozilla.org/security/announce/2006/mfsa2006-49.htmlnvdVendor Advisory
- www.us-cert.gov/cas/techalerts/TA06-208A.htmlnvdUS Government Resource
- patches.sgi.com/support/free/security/advisories/20060703-01-U.ascnvd
- rhn.redhat.com/errata/RHSA-2006-0609.htmlnvd
- secunia.com/advisories/21246nvd
- secunia.com/advisories/21250nvd
- secunia.com/advisories/21262nvd
- secunia.com/advisories/21269nvd
- secunia.com/advisories/21275nvd
- secunia.com/advisories/21336nvd
- secunia.com/advisories/21343nvd
- secunia.com/advisories/21358nvd
- secunia.com/advisories/21529nvd
- secunia.com/advisories/21532nvd
- secunia.com/advisories/21607nvd
- secunia.com/advisories/21631nvd
- secunia.com/advisories/22055nvd
- secunia.com/advisories/22065nvd
- security.gentoo.org/glsa/glsa-200608-02.xmlnvd
- security.gentoo.org/glsa/glsa-200608-04.xmlnvd
- securitytracker.com/idnvd
- securitytracker.com/idnvd
- sunsolve.sun.com/search/document.donvd
- www.mandriva.com/security/advisoriesnvd
- www.mandriva.com/security/advisoriesnvd
- www.mandriva.com/security/advisoriesnvd
- www.novell.com/linux/security/advisories/2006_48_seamonkey.htmlnvd
- www.redhat.com/support/errata/RHSA-2006-0594.htmlnvd
- www.redhat.com/support/errata/RHSA-2006-0608.htmlnvd
- www.redhat.com/support/errata/RHSA-2006-0611.htmlnvd
- www.securityfocus.com/archive/1/446657/100/200/threadednvd
- www.ubuntu.com/usn/usn-350-1nvd
- www.vupen.com/english/advisories/2006/2998nvd
- www.vupen.com/english/advisories/2006/3749nvd
- www.vupen.com/english/advisories/2007/0058nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/27985nvd
- issues.rpath.com/browse/RPL-537nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11395nvd
- usn.ubuntu.com/329-1/nvd
News mentions
0No linked articles in our index yet.