CVE-2006-5633

Priority
Description
Firefox 1.5.0.7 and 2.0, and Seamonkey 1.1b, allows remote attackers to
cause a denial of service (crash) by creating a range object using
createRange, calling selectNode on a DocType node (DOCUMENT_TYPE_NODE),
then calling createContextualFragment on the range, which triggers a null
dereference. NOTE: the original Bugtraq post mentioned that code execution
was possible, but followup analysis has shown that it is only a null
dereference.
Package
Upstream:released (1.5.0.9, 2.0.0.1)
More Information

Updated: 2019-03-19 11:40:23 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)