French Security Incident Response Team

FrSIRT   

      

   français French  anglais English

 
Vulnerability Notification Service
 FrSIRT Private Exploit & PoC Codes Service
 FrSIRT Partner Program
 14-Day Free Trial
Contact FrSIRT Sales Dept.
 

Security Advisories
Linux Security Advisories
Virus and Threats Advisories
Latest Security News
Latest Zero Day Threats
Security Vulnerabilities and Advisories Search Engine
 

Report a security incident
Report a new vulnerability
Security Mailinglist
 

Our Company
FrSIRT in the News
Advertise on FrSIRT.COM
Security Researchers and Exploit Writers Jobs
Contact Us

Fedora Security Update Fixes Multiple Mozilla Vulnerabilities

Title : Fedora Security Update Fixes Multiple Mozilla Vulnerabilities
Advisory ID : FrSIRT/ADV-2005-1183
CVE ID : CVE-2005-0989 - CVE-2005-1159 - CVE-2005-1160 - CVE-2005-1532 - CVE-2005-2265 - CVE-2005-2266 - CVE-2005-2269 - CVE-2005-2270
CWE ID : CWE-
Rated as : Critical 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2005-07-22

Advisory Details
 
  Description
  Affected Products
  Solution
  References
Technical Description    Receive FrSIRT alerts in a Text format  Receive FrSIRT alerts in a PDF format  Receive FrSIRT alerts in an XML format  Receive FrSIRT notifications by SMS 

Fedora has released updated packages to address multiple security vulnerabilities identified in Mozilla [...]

Solution

Upgrade the affected package :
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/
698009229e06fad1d7b9406c072ee0a9 SRPMS/mozilla-1.7.10-1.3.1.src.rpm
d2593847a3720f2437d61ab53061e9be x86_64/mozilla-1.7.10-1.3.1.x86_64.rpm
949d5f656de6782f92af383cb2ff4ada x86_64/mozilla-nspr-1.7.10-1.3.1.x86_64.rpm
42c12731ee0f67480c1e302956013bce x86_64/mozilla-nspr-devel-1.7.10-1.3.1.x86_64.rpm
315e96f6235299f9984ef87b33913408 x86_64/mozilla-nss-1.7.10-1.3.1.x86_64.rpm
3dc29ad690ef97756e731f4f5c471b1e x86_64/mozilla-nss-devel-1.7.10-1.3.1.x86_64.rpm
4b10675f37638dc40c426f8b45f67bfa x86_64/mozilla-devel-1.7.10-1.3.1.x86_64.rpm
38f4c8381123bc86bfbf28e4f3dd99b0 x86_64/mozilla-mail-1.7.10-1.3.1.x86_64.rpm
7754ce9a64b65fab29cbea9ce6de9549 x86_64/mozilla-chat-1.7.10-1.3.1.x86_64.rpm
735fcb06fd18a1b69c12edc58556d83e x86_64/mozilla-js-debugger-1.7.10-1.3.1.x86_64.rpm
d4c78884a0e27e95614dc4bff8b325fd x86_64/mozilla-dom-inspector-1.7.10-1.3.1.x86_64.rpm
b08870788586b7831ab7a8ee8ff2b23c x86_64/debug/mozilla-debuginfo-1.7.10-1.3.1.x86_64.rpm
eafc6311968ebfc5f7c806564b6c47c6 x86_64/mozilla-nspr-1.7.10-1.3.1.i386.rpm
ca00c8845f2fc411acf3cf0729bdbca6 x86_64/mozilla-nss-1.7.10-1.3.1.i386.rpm
e00f1b1a0af07f62e20fb92678816cc6 i386/mozilla-1.7.10-1.3.1.i386.rpm
eafc6311968ebfc5f7c806564b6c47c6 i386/mozilla-nspr-1.7.10-1.3.1.i386.rpm
829f78f10fb46c3423a231c847f5c85c i386/mozilla-nspr-devel-1.7.10-1.3.1.i386.rpm
ca00c8845f2fc411acf3cf0729bdbca6 i386/mozilla-nss-1.7.10-1.3.1.i386.rpm
45424d71b9ab5b3124d9899633ba94be i386/mozilla-nss-devel-1.7.10-1.3.1.i386.rpm
c9791bf350eba92088d98928804a8e6a i386/mozilla-devel-1.7.10-1.3.1.i386.rpm
2f1e0174bbd6e94143ab24f9b26017bb i386/mozilla-mail-1.7.10-1.3.1.i386.rpm
dd6f87e4badc6dc179c7977208e84536 i386/mozilla-chat-1.7.10-1.3.1.i386.rpm
31af3c9bc533da93f5c0fe3aa25df2f2 i386/mozilla-js-debugger-1.7.10-1.3.1.i386.rpm
7216fc495e370b94795d965a3f02d280 i386/mozilla-dom-inspector-1.7.10-1.3.1.i386.rpm
eeb7aeb6e2dcd89ad39d43d7914f82c6 i386/debug/mozilla-debuginfo-1.7.10-1.3.1.i386.rpm
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/
eb361c708dddc1af05158ce6759a61b9 SRPMS/mozilla-1.7.10-1.5.1.src.rpm
c5cfc540316ed7679b562ce6e4431a53 ppc/mozilla-1.7.10-1.5.1.ppc.rpm
69ea1fde672e04a4f6913025870ae28e ppc/mozilla-nspr-1.7.10-1.5.1.ppc.rpm
26ccb88f78bb5142aa07325fd4c5a8c2 ppc/mozilla-nspr-devel-1.7.10-1.5.1.ppc.rpm
465c71611974982178a4acbd03e79848 ppc/mozilla-nss-1.7.10-1.5.1.ppc.rpm
6c3043f14271ce087413b667de05e04c ppc/mozilla-nss-devel-1.7.10-1.5.1.ppc.rpm
5489a8676730b06e32e18f375b83b55d ppc/mozilla-devel-1.7.10-1.5.1.ppc.rpm
b672a31b9bf29f2a593d870f694aa014 ppc/mozilla-mail-1.7.10-1.5.1.ppc.rpm
51be9cdb1510a8b045104bf8956cd174 ppc/mozilla-chat-1.7.10-1.5.1.ppc.rpm
fc3b1d1ecbfcb7a26bbfd2cb18153ec3 ppc/mozilla-js-debugger-1.7.10-1.5.1.ppc.rpm
76f4786b961fa856c99f7a6d60e53ef6 ppc/mozilla-dom-inspector-1.7.10-1.5.1.ppc.rpm
2e3612c10f295f670de5cdf5537b8d18 ppc/debug/mozilla-debuginfo-1.7.10-1.5.1.ppc.rpm
e01cf2f85658577773f84c27be82a981 x86_64/mozilla-1.7.10-1.5.1.x86_64.rpm
78ea2f828bdf576072d5b1d8a117ac18 x86_64/mozilla-nspr-1.7.10-1.5.1.x86_64.rpm
6ed062540e8729a0fe20603dd81a4555 x86_64/mozilla-nspr-devel-1.7.10-1.5.1.x86_64.rpm
900e1bdda17a57a40734e4632216b09b x86_64/mozilla-nss-1.7.10-1.5.1.x86_64.rpm
0835f3a6eb0d3a28e571c659f62b58b5 x86_64/mozilla-nss-devel-1.7.10-1.5.1.x86_64.rpm
46366778caa6bbc28ac2fd7ab601b3e6 x86_64/mozilla-devel-1.7.10-1.5.1.x86_64.rpm
d484918f9a9aacaa3244dfe9aa00724c x86_64/mozilla-mail-1.7.10-1.5.1.x86_64.rpm
a91f3fdebba315d7a904dce6ca078a71 x86_64/mozilla-chat-1.7.10-1.5.1.x86_64.rpm
b7c81fc35699665628b08becab581d89 x86_64/mozilla-js-debugger-1.7.10-1.5.1.x86_64.rpm
e2159457c9cb315bb58ea141fcb61f58 x86_64/mozilla-dom-inspector-1.7.10-1.5.1.x86_64.rpm
bee07c4cc4a2334c6c659b9a78b5dd27 x86_64/debug/mozilla-debuginfo-1.7.10-1.5.1.x86_64.rpm
9e00889d8cf0e0cf6e05b9e2bfa4aa59 x86_64/mozilla-nspr-1.7.10-1.5.1.i386.rpm
d3debda6d568aaf48caec6f01d2c4bb5 x86_64/mozilla-nss-1.7.10-1.5.1.i386.rpm
0170da6538e34da1618ae3b496e19191 i386/mozilla-1.7.10-1.5.1.i386.rpm
9e00889d8cf0e0cf6e05b9e2bfa4aa59 i386/mozilla-nspr-1.7.10-1.5.1.i386.rpm
4284565ab14530bc3a3b9c67f19b5ef3 i386/mozilla-nspr-devel-1.7.10-1.5.1.i386.rpm
d3debda6d568aaf48caec6f01d2c4bb5 i386/mozilla-nss-1.7.10-1.5.1.i386.rpm
29207a796c6f6467afaf012f4102e51f i386/mozilla-nss-devel-1.7.10-1.5.1.i386.rpm
46c2a725f16211cf11c6f247c4865baf i386/mozilla-devel-1.7.10-1.5.1.i386.rpm
6875846f0350c548aea6bc80c248f97f i386/mozilla-mail-1.7.10-1.5.1.i386.rpm
ed5d8fa1b534c8226dca48c30fbab7c0 i386/mozilla-chat-1.7.10-1.5.1.i386.rpm
3cd9b40c026c9bc7ff0f1688eddb0a55 i386/mozilla-js-debugger-1.7.10-1.5.1.i386.rpm
30dea8f03254fa2b7504099592c5c073 i386/mozilla-dom-inspector-1.7.10-1.5.1.i386.rpm
e85b37cef808ba529a228cec8b205a82 i386/debug/mozilla-debuginfo-1.7.10-1.5.1.i386.rpm

ChangeLog

2005-07-22 : Initial release

Vulnerability Management

Subscribe to FrSIRT VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@frsirt.com.
 
 

Search
      

Mailinglist
    
 

Mozilla Products Code Execution and Security Bypass Vulnerabilities

Mozilla Firefox Shortcut Handlingg Information Disclosure Vulnerability

Mozilla Products Code Execution and Security Bypass Vulnerabilities

Mozilla Firefox for Mac OS X GIF Rendering Code Execution Vulnerability

Mozilla Products Remote Code Execution and Security Bypass Issues

Mozilla Products Code Execution and Injection Vulnerabilities

Mozilla JavaScript Garbage Collector Code Execution Vulnerability

IBM AIX Multiple Command Local Privilege Escalation Vulnerabilities

IBM AIX Sendmail Header Lines Denial of Service Vulnerability

IBM Metrica Multiple Parameter Cross Site Scripting Vulnerabilities

IBM Lotus Quickr Unspecified Cross Site Scripting Vulnerabilities

IBM Hardware Management Console Denial of Service Vulnerability

IBM Tivoli Storage Manager Client Buffer Overflow Vulnerability

IBM DB2 Denial of Service and Information Disclosure Vulnerabilities

Microsoft XML Core Services Multiple Remote Vulnerabilities (MS08-069)

Microsoft Windows SMB Credential Reflection Vulnerability (MS08-068)

Microsoft Windows Server Service Vulnerability (MS08-067)

Microsoft Windows "afd.sys" Privilege Escalation Vulnerability (MS08-066)

Microsoft Windows MSMQ Code Execution Vulnerability (MS08-065)

Microsoft Windows VADs Privilege Escalation Vulnerability (MS08-064)

Microsoft Windows SMB Code Execution Vulnerability (MS08-063)

Copyright 2003-2008 © FrSIRT.COM - Privacy Policy