CVE-2006-0292
The Javascript interpreter (jsinterp.c) in Mozilla and Firefox before 1.5.1 does not properly dereference objects, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via unknown attack vectors related to garbage collection.
Date published : 2006-02-02
http://www.securityfocus.com/bid/16476
http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm