FrSIRT - Fedora Security Update Fixes Mozilla Seamonkey Multiple Vulnerabilities / Exploit (Security Advisories)

French Security Incident Response Team

French

English

Fedora Security Update Fixes Mozilla Seamonkey Multiple Vulnerabilities

Title : Fedora Security Update Fixes Mozilla Seamonkey Multiple Vulnerabilities
Advisory ID : FrSIRT/ADV-2007-4132
CVE ID : CVE-2007-5947 - CVE-2007-5959 - CVE-2007-5960
Rated as : Critical

Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2007-12-10

Advisory Details

Description

Affected Products

Solution

References

Technical Description

Multiple vulnerabilities have been identified in Fedora, which could be exploited by attackers to bypass security restrictions, cause a denial of service or compromise an affected system [...]

Solution

Upgrade the affected packages :

0bb8b53a40098142b31bb7d2f7d78009f89dae0e seamonkey-1.1.7-1.fc8.ppc64.rpm
9c7ac2ab69265b827b1536f26d41dcd00c6b4cff seamonkey-debuginfo-1.1.7-1.fc8.ppc64.rpm
c3d287ce594ffd4183778c3b64008e9072093a1a seamonkey-debuginfo-1.1.7-1.fc8.i386.rpm
581b48f6a57004687c42753711f00b0368431c9e seamonkey-1.1.7-1.fc8.i386.rpm
20e158f810c40c15b1b77f3bc8bbf6e4606cbf75 seamonkey-1.1.7-1.fc8.x86_64.rpm
83add2669c7d80caaf7c73350ce6bd5eab183885 seamonkey-debuginfo-1.1.7-1.fc8.x86_64.rpm
6a340aba1d04c08a68b9aae2a71babc1daf68ead seamonkey-1.1.7-1.fc8.ppc.rpm
4106a969baebb739f6a43330bdcbcd0fa1284c75 seamonkey-debuginfo-1.1.7-1.fc8.ppc.rpm
d2c36a8117398496c8dd69b03b525044f6aa02b8 seamonkey-1.1.7-1.fc8.src.rpm

c46a5b083f291e0f8c0883abdfaf03fe5d985951 seamonkey-1.1.7-1.fc7.ppc64.rpm
127dc5f0d9811e6b3719778c5e898414df5d5d98 seamonkey-debuginfo-1.1.7-1.fc7.ppc64.rpm
fde0e13fec433b880ed267f5bd95d6f34e3deb68 seamonkey-debuginfo-1.1.7-1.fc7.i386.rpm
8c69af5292e48e435c85448d01dcba46c9f54c43 seamonkey-1.1.7-1.fc7.i386.rpm
7fd64cc51de038e2fc1589b989e773e48d650499 seamonkey-1.1.7-1.fc7.x86_64.rpm
eb1fd908a746d91ad1de3568d18a3f6f735673f6 seamonkey-debuginfo-1.1.7-1.fc7.x86_64.rpm
da12bc3b281d71a5ba05b9bcdf51900fdd1bd3b3 seamonkey-debuginfo-1.1.7-1.fc7.ppc.rpm
01cccc6cd943929a6c7df1ae29ef4aed5209de7e seamonkey-1.1.7-1.fc7.ppc.rpm
a6cab9461d6b2941ec60a7f1690a8a04f6f0e2f2 seamonkey-1.1.7-1.fc7.src.rpm

ChangeLog

2007-12-10 : Initial release

Vulnerability Management

Subscribe to FrSIRT VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@frsirt.com.

Mailinglist

	Sun Solaris System Management Agent Buffer Overflow Vulnerability
	Sun Update Fixes Mozilla Thunderbird Multiple Vulnerabilities
	Sun Java JDK and JRE Code Execution and Security Bypass Issues
	Sun Solaris DNS Protocol Remote Cache Poisoning Vulnerability
	Sun Solaris Tomcat JSP/Servlet Container Multiple Vulnerabilities
	Sun Java System Access Manager XSLT Code Execution Vulnerability
	Sun Solaris 10 Adobe Reader Multiple Code Execution Vulnerabilities

	Cisco Products Remote DNS Cache Poisoning Vulnerability
	Cisco Wide Area Application Services CUPS Remote Vulnerability
	Cisco UCM Denial of Service and Authentication Bypass Vulnerabilities
	Cisco Intrusion Prevention System Jumbo Frame Vulnerability
	Cisco VPN Client Deterministic Network Enhancer Privilege Escalation
	Cisco Products SNMPv3 Authentication Packets Vulnerabilities
	Cisco PIX and ASA Security Bypass and Denial of Service

	Mozilla Firefox for Mac OS X GIF Rendering Code Execution Vulnerability
	Mozilla Products Remote Code Execution and Security Bypass Issues
	Mozilla Products Code Execution and Injection Vulnerabilities
	Mozilla JavaScript Garbage Collector Code Execution Vulnerability
	Mozilla Thunderbird Code Execution and Cross Site Scripting Issues
	Mozilla Firefox and SeaMonkey Multiple Remote Code Execution Issues
	Mozilla Thunderbird Multiple Security Bypass and Code Execution Issues