CVE-2006-0836
Mozilla Thunderbird 1.5 - Denial of Service via LDIF Address Book Import
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2006-0836. PoCs published by DrFrancky.
AI-analyzed exploit summary This exploit demonstrates a denial-of-service (DoS) vulnerability in Mozilla Thunderbird 1.5 by importing a maliciously crafted LDIF file with an excessively long 'homePhone' field (2MB of 'a' characters). The vulnerability triggers a crash or resource exhaustion when the address book processes the file.
Description
Mozilla Thunderbird 1.5 allows user-assisted attackers to cause an unspecified denial of service by tricking the user into importing an LDIF file with a long field into the address book, as demonstrated by a long homePhone field.
Exploits (1)
This exploit demonstrates a denial-of-service (DoS) vulnerability in Mozilla Thunderbird 1.5 by importing a maliciously crafted LDIF file with an excessively long 'homePhone' field (2MB of 'a' characters). The vulnerability triggers a crash or resource exhaustion when the address book processes the file.