Описание
Multiple vulnerabilities in Mozilla Firefox before 2.0.0.8, Thunderbird before 2.0.0.8, and SeaMonkey before 1.1.5 allow remote attackers to cause a denial of service (crash) via crafted HTML that triggers memory corruption or assert errors.
Multiple vulnerabilities in Mozilla Firefox before 2.0.0.8, Thunderbird before 2.0.0.8, and SeaMonkey before 1.1.5 allow remote attackers to cause a denial of service (crash) via crafted HTML that triggers memory corruption or assert errors.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-5339
- https://bugzilla.mozilla.org/buglist.cgi?bug_id=309322%2C330563%2C341858%2C344064%2C348126%2C354645%2C361745%2C362901%2C378670%2C378682%2C379799%2C382376%2C384105%2C386382%2C386914%2C387033%2C387460%2C387844%2C391974%2C392285%2C393770%2C394014%2C394418
- https://bugzilla.mozilla.org/buglist.cgi?bug_id=309322,330563,341858,344064,348126,354645,361745,362901,378670,378682,379799,382376,384105,386382,386914,387033,387460,387844,391974,392285,393770,394014,394418
- https://exchange.xforce.ibmcloud.com/vulnerabilities/37281
- https://issues.rpath.com/browse/RPL-1858
- https://issues.rpath.com/browse/RPL-1884
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10459
- https://usn.ubuntu.com/535-1
- https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00498.html
- https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00285.html
- https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00355.html
- http://bugs.gentoo.org/show_bug.cgi?id=196481
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00774579
- http://secunia.com/advisories/27276
- http://secunia.com/advisories/27298
- http://secunia.com/advisories/27311
- http://secunia.com/advisories/27313
- http://secunia.com/advisories/27315
- http://secunia.com/advisories/27325
- http://secunia.com/advisories/27326
- http://secunia.com/advisories/27327
- http://secunia.com/advisories/27335
- http://secunia.com/advisories/27336
- http://secunia.com/advisories/27356
- http://secunia.com/advisories/27360
- http://secunia.com/advisories/27383
- http://secunia.com/advisories/27387
- http://secunia.com/advisories/27403
- http://secunia.com/advisories/27414
- http://secunia.com/advisories/27425
- http://secunia.com/advisories/27480
- http://secunia.com/advisories/27665
- http://secunia.com/advisories/27680
- http://secunia.com/advisories/27704
- http://secunia.com/advisories/27744
- http://secunia.com/advisories/28179
- http://secunia.com/advisories/28363
- http://secunia.com/advisories/28398
- http://secunia.com/advisories/28636
- http://security.gentoo.org/glsa/glsa-200711-24.xml
- http://securitytracker.com/id?1018834
- http://securitytracker.com/id?1018835
- http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.471007
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-231441-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-201516-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-77-1018977.1-1
- http://support.novell.com/techcenter/psdb/60eb95b75c76f9fbfcc9a89f99cd8f79.html
- http://www.debian.org/security/2007/dsa-1391
- http://www.debian.org/security/2007/dsa-1392
- http://www.debian.org/security/2007/dsa-1396
- http://www.debian.org/security/2007/dsa-1401
- http://www.gentoo.org/security/en/glsa/glsa-200711-14.xml
- http://www.kb.cert.org/vuls/id/559977
- http://www.mandriva.com/en/security/advisories?name=MDKSA-2007:202
- http://www.mandriva.com/security/advisories?name=MDVSA-2007:047
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:047
- http://www.mozilla.org/security/announce/2007/mfsa2007-29.html
- http://www.novell.com/linux/security/advisories/2007_57_mozilla.html
- http://www.novell.com/linux/security/advisories/suse_security_summary_report.html
- http://www.redhat.com/support/errata/RHSA-2007-0979.html
- http://www.redhat.com/support/errata/RHSA-2007-0980.html
- http://www.redhat.com/support/errata/RHSA-2007-0981.html
- http://www.securityfocus.com/archive/1/482876/100/200/threaded
- http://www.securityfocus.com/archive/1/482925/100/0/threaded
- http://www.securityfocus.com/archive/1/482932/100/200/threaded
- http://www.securityfocus.com/bid/26132
- http://www.ubuntu.com/usn/usn-536-1
- http://www.vupen.com/english/advisories/2007/3544
- http://www.vupen.com/english/advisories/2007/3545
- http://www.vupen.com/english/advisories/2007/3587
- http://www.vupen.com/english/advisories/2007/4272
- http://www.vupen.com/english/advisories/2008/0082
- http://www.vupen.com/english/advisories/2008/0083
- http://www.vupen.com/english/advisories/2008/0643
Связанные уязвимости
Multiple vulnerabilities in Mozilla Firefox before 2.0.0.8, Thunderbird before 2.0.0.8, and SeaMonkey before 1.1.5 allow remote attackers to cause a denial of service (crash) via crafted HTML that triggers memory corruption or assert errors.
Multiple vulnerabilities in Mozilla Firefox before 2.0.0.8, Thunderbird before 2.0.0.8, and SeaMonkey before 1.1.5 allow remote attackers to cause a denial of service (crash) via crafted HTML that triggers memory corruption or assert errors.
Multiple vulnerabilities in Mozilla Firefox before 2.0.0.8, Thunderbird before 2.0.0.8, and SeaMonkey before 1.1.5 allow remote attackers to cause a denial of service (crash) via crafted HTML that triggers memory corruption or assert errors.
Multiple vulnerabilities in Mozilla Firefox before 2.0.0.8, Thunderbir ...
ELSA-2007-0979: Critical: firefox security update (CRITICAL)