Loading ...
Sorry, an error occurred while loading the content.
 

Mozilla-thunderbid-firefox-seamonkey Multiple Vulnerabilities

Expand Messages
  • Vincenzo Virgilio
    National Cyber Alert System Technical Cyber Security Alert TA07-151A Mozilla Updates for Multiple Vulnerabilities Original release date: May 31, 2007 Last
    Message 1 of 1 , Jun 1, 2007
      National Cyber Alert System

      Technical Cyber Security Alert TA07-151A



      Mozilla Updates for Multiple Vulnerabilities

      Original release date: May 31, 2007
      Last revised: --
      Source: US-CERT


      Systems Affected

      * Mozilla Firefox
      * Mozilla Thunderbird
      * Mozilla SeaMonkey
      * Netscape Browser

      Other products based on Mozilla components may also be affected.


      Overview

      The Mozilla web browser and derived products contain several
      vulnerabilities, the most severe of which could allow a remote
      attacker to execute arbitrary code on an affected system.


      I. Description

      Mozilla has released new versions of Firefox, Thunderbird, and
      SeaMonkey to address several vulnerabilities. Further details about
      these vulnerabilities are available from Mozilla and the Vulnerability
      Notes Database. An attacker could exploit these vulnerabilities by
      convincing a user to view a specially-crafted HTML document, such as a
      web page or an HTML email message.

      Support for Firefox 1.5 is scheduled to end in June 2007. According to
      Mozilla:

      Firefox 1.5.0.x will be maintained with security and stability
      updates until June 2007. All users are strongly encouraged to
      upgrade to Firefox 2.


      II. Impact

      While the impacts of the individual vulnerabilities vary, the most
      severe could allow a remote, unauthenticated attacker to execute
      arbitrary code on a vulnerable system. An attacker may also be able to
      cause a denial of service.


      III. Solution

      Upgrade

      These vulnerabilities are addressed in Mozilla Firefox 2.0.0.4,
      Firefox 1.5.0.12, Thunderbird 2.0.0.4, Thunderbird 1.5.0.12,
      SeaMonkey 1.0.9, SeaMonkey 1.1.2. By default, Mozilla Firefox,
      Thunderbird, and SeaMonkey automatically check for updates.
    Your message has been successfully submitted and would be delivered to recipients shortly.
    »
    «