CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-3731

Mozilla Firefox 1.5.0.4 and earlier allows remote user-assisted attackers to cause a denial of service (crash) via a form with a multipart/form-data encoding and a user-uploaded file. NOTE: a third party has claimed that this issue might be related to the LiveHTTPHeaders extension.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.0%

CVSS Severity

CVSS v2 Score 2.6

References

http://www.securityfocus.com/archive/1/440119/100/100/threaded
http://www.securityfocus.com/archive/1/440506/100/0/threaded
http://www.securityfocus.com/archive/1/440119/100/100/threaded
http://www.securityfocus.com/archive/1/440506/100/0/threaded

Products affected by CVE-2006-3731

Mozilla » Firefox » Version: 1.5

cpe:2.3:a:mozilla:firefox:1.5
Mozilla » Firefox » Version: 1.5.0.1

cpe:2.3:a:mozilla:firefox:1.5.0.1
Mozilla » Firefox » Version: 1.5.0.2

cpe:2.3:a:mozilla:firefox:1.5.0.2
Mozilla » Firefox » Version: 1.5.0.3

cpe:2.3:a:mozilla:firefox:1.5.0.3
Mozilla » Firefox » Version: 1.5.0.4

cpe:2.3:a:mozilla:firefox:1.5.0.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-3731

Products

Pricing

Contact Us