Mozilla Firefox, SeaMonkey, Camino, and Thunderbird Multiple Remote Vulnerabilities
BID:18228
CVE-2006-2775 | CVE-2006-2776 | CVE-2006-2777 | CVE-2006-2778 | CVE-2006-2779 | CVE-2006-2780 | CVE-2006-2781 | CVE-2006-2782 | CVE-2006-2784 | CVE-2006-2785 | CVE-2006-2786 | CVE-2006-2787 | CVE-2006-2783 |Info
Mozilla Firefox, SeaMonkey, Camino, and Thunderbird Multiple Remote Vulnerabilities
| Bugtraq ID: | 18228 |
| Class: | Unknown |
| CVE: |
CVE-2006-2775 CVE-2006-2776 CVE-2006-2777 CVE-2006-2778 CVE-2006-2779 CVE-2006-2780 CVE-2006-2782 CVE-2006-2783 CVE-2006-2784 CVE-2006-2785 CVE-2006-2786 CVE-2006-2787 CVE-2006-1942 CVE-2006-2781 CVE-2006-2788 |
| Remote: | Yes |
| Local: | No |
| Published: | Jun 02 2006 12:00AM |
| Updated: | Jun 10 2009 01:59AM |
| Credit: | moz_bug_r_a4, Kazuho Oku of Cybozu Labs, Paul Nickerson, Jonas Sicking, Mikolaj J. Habryn and Masatoshi Kimura are credited with the discovery of these vulnerabilities. |
| Vulnerable: |
Ubuntu Ubuntu Linux 5.10 sparc Ubuntu Ubuntu Linux 5.10 powerpc Ubuntu Ubuntu Linux 5.10 i386 Ubuntu Ubuntu Linux 5.10 amd64 Ubuntu Ubuntu Linux 5.0 4 powerpc Ubuntu Ubuntu Linux 5.0 4 i386 Ubuntu Ubuntu Linux 5.0 4 amd64 Ubuntu Ubuntu Linux 6.06 LTS powerpc Ubuntu Ubuntu Linux 6.06 LTS i386 Ubuntu Ubuntu Linux 6.06 LTS amd64 Sun Solaris 9_x86 Sun Solaris 9 Sun Solaris 8_x86 Sun Solaris 8_sparc Sun Solaris 10_x86 Sun Solaris 10.0_x86 Sun Solaris 10.0 Sun Solaris 10 S.u.S.E. Linux Professional 10.1 S.u.S.E. Linux Personal 10.1 Redhat Enterprise Linux WS 4 Redhat Enterprise Linux WS 3 Redhat Enterprise Linux WS 2.1 IA64 Redhat Enterprise Linux WS 2.1 Redhat Enterprise Linux ES 4 Redhat Enterprise Linux ES 3 Redhat Enterprise Linux ES 2.1 IA64 Redhat Enterprise Linux ES 2.1 Redhat Enterprise Linux AS 4 Redhat Enterprise Linux AS 3 Redhat Enterprise Linux AS 2.1 IA64 Redhat Enterprise Linux AS 2.1 Redhat Desktop 4.0 Redhat Desktop 3.0 Redhat Advanced Workstation for the Itanium Processor 2.1 IA64 Redhat Advanced Workstation for the Itanium Processor 2.1 Mozilla Thunderbird 1.5 beta 2 Mozilla Thunderbird 1.5 Mozilla Thunderbird 1.0.8 Mozilla Thunderbird 1.0.7 Mozilla Thunderbird 1.0.6 Mozilla Thunderbird 1.0.5 Mozilla Thunderbird 1.0.2 Mozilla Thunderbird 1.0.1 Mozilla Thunderbird 1.0 Mozilla Thunderbird 0.9 Mozilla Thunderbird 0.8 Mozilla Thunderbird 0.7.3 Mozilla Thunderbird 0.7.2 Mozilla Thunderbird 0.7.1 Mozilla Thunderbird 0.7 Mozilla Thunderbird 0.6 Mozilla Thunderbird 1.5.0.2 Mozilla Thunderbird 1.5.0.1 Mozilla SeaMonkey 1.0.1 Mozilla SeaMonkey 1.0 dev Mozilla SeaMonkey 1.0 Mozilla Firefox 1.5 beta 2 Mozilla Firefox 1.5 beta 1 Mozilla Firefox 1.5 Mozilla Firefox 1.0.8 Mozilla Firefox 1.0.7 Mozilla Firefox 1.0.6 Mozilla Firefox 1.0.5 Mozilla Firefox 1.0.5 Mozilla Firefox 1.0.4 Mozilla Firefox 1.0.3 Mozilla Firefox 1.0.2 Mozilla Firefox 1.0.1 Mozilla Firefox 1.0 Mozilla Firefox 0.10.1 Mozilla Firefox 0.10 Mozilla Firefox 0.9.3 Mozilla Firefox 0.9.2 Mozilla Firefox 0.9.1 Mozilla Firefox 0.9 rc Mozilla Firefox 0.9 Mozilla Firefox 0.8 Mozilla Firefox Preview Release Mozilla Firefox 1.5.0.3 Mozilla Firefox 1.5.0.2 Mozilla Firefox 1.5.0.2 Mozilla Firefox 1.5.0.1 Mozilla Camino 1.0.1 Mozilla Camino 0.8.4 Mozilla Camino 0.8.3 Mozilla Camino 0.8 Mozilla Camino 0.7 .0 Mozilla Camino 1.0 Mandriva Linux Mandrake 2006.0 x86_64 Mandriva Linux Mandrake 2006.0 MandrakeSoft Corporate Server 3.0 x86_64 MandrakeSoft Corporate Server 3.0 HP HP-UX B.11.31 HP HP-UX B.11.23 HP HP-UX B.11.11 HP HP-UX B.11.11 Gentoo Linux Debian Linux 3.1 sparc Debian Linux 3.1 s/390 Debian Linux 3.1 ppc Debian Linux 3.1 mipsel Debian Linux 3.1 mips Debian Linux 3.1 m68k Debian Linux 3.1 ia-64 Debian Linux 3.1 ia-32 Debian Linux 3.1 hppa Debian Linux 3.1 arm Debian Linux 3.1 amd64 Debian Linux 3.1 alpha Debian Linux 3.1 Apple Safari 3.2.3 for Windows Apple Safari 3.2.3 Apple Safari 3.2.2 for Windows Apple Safari 3.1.2 for Windows Apple Safari 3.1.2 Apple Safari 3.1.1 for Windows Apple Safari 3.1.1 Apple Safari 2.0.4 Apple Safari 2.0.3 Apple Safari 2.0.2 Apple Safari 2.0.1 Apple Safari 1.3.2 Apple Safari 1.3.1 Apple Safari 1.3 Apple Safari 1.2.3 Apple Safari 1.2.2 Apple Safari 1.2.1 Apple Safari 1.2 Apple Safari 1.1 Apple Safari 1.0 Apple Safari 3.2 Apple Safari 3.1 for Windows Apple Safari 3.1 Apple Safari 3 Apple iPod Touch 1.1.4 Apple iPod Touch 1.1.3 Apple iPod Touch 1.1.2 Apple iPod Touch 1.1.1 Apple iPod Touch 1.1 Apple iPod Touch 0 Apple iPhone 1.1.4 Apple iPhone 1.1.3 Apple iPhone 1.1.2 Apple iPhone 1.1.1 Apple iPhone 1.0.2 Apple iPhone 1.0.1 Apple iPhone 1.1 Apple iPhone 1 Apple iPhone 0 |
| Not Vulnerable: |
Mozilla Thunderbird 1.5.0.4 Mozilla SeaMonkey 1.0.2 Mozilla Firefox 1.5.0.4 Mozilla Camino 1.0.2 Apple Safari 4 for Windows Apple Safari 4 Apple iPod Touch 2.0 Apple iPhone 2.0 |
Discussion
Mozilla Firefox, SeaMonkey, Camino, and Thunderbird Multiple Remote Vulnerabilities
The Mozilla Foundation has released thirteen security advisories specifying security vulnerabilities in Mozilla Firefox, SeaMonkey, Camino, and Thunderbird.
These vulnerabilities allow attackers to:
- execute arbitrary machine code in the context of the vulnerable application
- crash affected applications
- run JavaScript code with elevated privileges, potentially allowing the remote execution of machine code
- gain access to potentially sensitive information.
Other attacks may also be possible.
The issues described here will be split into individual BIDs as further information becomes available.
These issues are fixed in:
- Mozilla Firefox version 1.5.0.4
- Mozilla Thunderbird version 1.5.0.4
- Mozilla SeaMonkey version 1.0.2
- Mozilla Camino 1.0.2
The Mozilla Foundation has released thirteen security advisories specifying security vulnerabilities in Mozilla Firefox, SeaMonkey, Camino, and Thunderbird.
These vulnerabilities allow attackers to:
- execute arbitrary machine code in the context of the vulnerable application
- crash affected applications
- run JavaScript code with elevated privileges, potentially allowing the remote execution of machine code
- gain access to potentially sensitive information.
Other attacks may also be possible.
The issues described here will be split into individual BIDs as further information becomes available.
These issues are fixed in:
- Mozilla Firefox version 1.5.0.4
- Mozilla Thunderbird version 1.5.0.4
- Mozilla SeaMonkey version 1.0.2
- Mozilla Camino 1.0.2
Exploit / POC
Mozilla Firefox, SeaMonkey, Camino, and Thunderbird Multiple Remote Vulnerabilities
Some of the vulnerabilities described in this BID do not require exploits.
Proof-of-concept exploits are available in the Mozilla Bugzilla database, but they are not currently available to the general public.
Some of the vulnerabilities described in this BID do not require exploits.
Proof-of-concept exploits are available in the Mozilla Bugzilla database, but they are not currently available to the general public.
Solution / Fix
Mozilla Firefox, SeaMonkey, Camino, and Thunderbird Multiple Remote Vulnerabilities
Solution:
New versions of Firefox, SeaMonkey, Camino, and Thunderbird are available to address these issues. Most Mozilla applications have self-updating features that may be used to download and install fixes.
Please see the referenced advisories for information on obtaining and applying fixes.
Sun Solaris 10.0
Mozilla Firefox 1.5.0.3
Sun Solaris 8_sparc
Apple Safari 3.1
Apple Safari 3
HP HP-UX B.11.23
HP HP-UX B.11.11
Mozilla SeaMonkey 1.0
Apple Safari 3.2
Apple Safari 1.0
Mozilla Firefox 1.0.4
Apple Safari 1.1
Apple Safari 1.2
Apple Safari 1.2.2
Apple Safari 1.2.3
Apple Safari 1.3
Mozilla Thunderbird 1.5
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 2.0.3
Apple Safari 3.1.1 for Windows
Apple Safari 3.2.3 for Windows
Solution:
New versions of Firefox, SeaMonkey, Camino, and Thunderbird are available to address these issues. Most Mozilla applications have self-updating features that may be used to download and install fixes.
Please see the referenced advisories for information on obtaining and applying fixes.
Sun Solaris 10.0
-
Sun 119115-21
http://sunsolve.sun.com/ -
Sun 119115-23
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -119115-23-1 -
Sun 119115-28
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -119115-28-1
Mozilla Firefox 1.5.0.3
-
SuSE MozillaFirefox-1.5.0.4-1.3.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaFirefox-1.5.0. 4-1.3.i586.rpm -
SuSE MozillaFirefox-1.5.0.4-1.3.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/MozillaFirefox-1.5.0.4 -1.3.ppc.rpm -
SuSE MozillaFirefox-translations-1.5.0.4-1.3.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaFirefox-transl ations-1.5.0.4-1.3.i586.rpm -
SuSE MozillaFirefox-translations-1.5.0.4-1.3.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/MozillaFirefox-transla tions-1.5.0.4-1.3.ppc.rpm
Sun Solaris 8_sparc
-
Sun 120671-03
http://sunsolve.sun.com/patches/ -
Sun 120671-04
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -120671-04-1 -
Sun 120671-06 SPARC
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -120671-06-1
Apple Safari 3.1
-
Apple Safari4.0Leo.dmg
http://www.apple.com/safari/download/ -
Apple Safari4.0Ti.dmg
http://www.apple.com/safari/download/
Apple Safari 3
-
Apple Safari4.0Leo.dmg
http://www.apple.com/safari/download/ -
Apple Safari4.0Ti.dmg
http://www.apple.com/safari/download/
HP HP-UX B.11.23
-
HP Firefox v2.0.0.4
http://www.hp.com/products1/unix/java/firefox/downloads/license_firefo x_2-0-0-4.html -
HP thunderbird_1.5.0.9_ia.depot.gz
For HP-UX B.11.23 and B.11.31 (IA)
http://www.hp.com/products1/unix/java/firefox/downloads/license_thunde rbird_1-5-0-8.html -
HP thunderbird_1.5.0.9_pa.depot.gz
For HP-UX B.11.11, B.11.23, and B.11.31 (PA)
http://www.hp.com/products1/unix/java/firefox/downloads/license_thunde rbird_1-5-0-8.html
HP HP-UX B.11.11
-
HP Firefox v2.0.0.4
http://www.hp.com/products1/unix/java/firefox/downloads/license_firefo x_2-0-0-4.html -
HP thunderbird_1.5.0.9_pa.depot.gz
For HP-UX B.11.11, B.11.23, and B.11.31 (PA)
http://www.hp.com/products1/unix/java/firefox/downloads/license_thunde rbird_1-5-0-8.html
Mozilla SeaMonkey 1.0
-
SuSE seamonkey-1.0.2-1.1.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/seamonkey-1.0.2-1.1.i 586.rpm -
SuSE seamonkey-1.0.2-1.1.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/seamonkey-1.0.2-1.1.pp c.rpm -
SuSE seamonkey-1.0.2-1.1.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/seamonkey-1.0.2-1.1 .x86_64.rpm -
SuSE seamonkey-calendar-1.0.2-1.1.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/seamonkey-calendar-1. 0.2-1.1.i586.rpm -
SuSE seamonkey-calendar-1.0.2-1.1.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/seamonkey-calendar-1.0 .2-1.1.ppc.rpm -
SuSE seamonkey-calendar-1.0.2-1.1.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/seamonkey-calendar- 1.0.2-1.1.x86_64.rpm -
SuSE seamonkey-dom-inspector-1.0.2-1.1.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/seamonkey-dom-inspect or-1.0.2-1.1.i586.rpm -
SuSE seamonkey-dom-inspector-1.0.2-1.1.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/seamonkey-dom-inspecto r-1.0.2-1.1.ppc.rpm -
SuSE seamonkey-dom-inspector-1.0.2-1.1.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/seamonkey-dom-inspe ctor-1.0.2-1.1.x86_64.rpm -
SuSE seamonkey-irc-1.0.2-1.1.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/seamonkey-irc-1.0.2-1 .1.i586.rpm -
SuSE seamonkey-irc-1.0.2-1.1.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/seamonkey-irc-1.0.2-1. 1.ppc.rpm -
SuSE seamonkey-irc-1.0.2-1.1.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/seamonkey-irc-1.0.2 -1.1.x86_64.rpm -
SuSE seamonkey-mail-1.0.2-1.1.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/seamonkey-mail-1.0.2- 1.1.i586.rpm -
SuSE seamonkey-mail-1.0.2-1.1.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/seamonkey-mail-1.0.2-1 .1.ppc.rpm -
SuSE seamonkey-mail-1.0.2-1.1.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/seamonkey-mail-1.0. 2-1.1.x86_64.rpm -
SuSE seamonkey-spellchecker-1.0.2-1.1.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/seamonkey-spellchecke r-1.0.2-1.1.i586.rpm -
SuSE seamonkey-spellchecker-1.0.2-1.1.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/seamonkey-spellchecker -1.0.2-1.1.ppc.rpm -
SuSE seamonkey-spellchecker-1.0.2-1.1.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/seamonkey-spellchec ker-1.0.2-1.1.x86_64.rpm -
SuSE seamonkey-venkman-1.0.2-1.1.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/seamonkey-venkman-1.0 .2-1.1.i586.rpm -
SuSE seamonkey-venkman-1.0.2-1.1.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/seamonkey-venkman-1.0. 2-1.1.ppc.rpm -
SuSE seamonkey-venkman-1.0.2-1.1.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/seamonkey-venkman-1 .0.2-1.1.x86_64.rpm
Apple Safari 3.2
-
Apple Safari4.0Leo.dmg
http://www.apple.com/safari/download/ -
Apple Safari4.0Ti.dmg
http://www.apple.com/safari/download/
Apple Safari 1.0
-
Apple Safari4.0Leo.dmg
http://www.apple.com/safari/download/ -
Apple Safari4.0Ti.dmg
http://www.apple.com/safari/download/
Mozilla Firefox 1.0.4
-
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge12_alpha.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge12_alpha.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge12_amd64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge12_amd64.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge12_arm.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge12_arm.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge12_hppa.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge12_hppa.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge12_i386.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge12_i386.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge12_ia64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge12_ia64.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge12_m68k.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge12_m68k.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge12_mips.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge12_mips.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge12_mipsel.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge12_mipsel.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge12_powerpc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge12_powerpc.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge12_s390.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge12_s390.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge12_sparc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge12_sparc.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge9_alpha.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge9_alpha.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge9_amd64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge9_amd64.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge9_arm.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge9_arm.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge9_hppa.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge9_hppa.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge9_i386.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge9_i386.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge9_ia64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge9_ia64.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge9_m68k.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge9_m68k.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge9_mips.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge9_mips.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge9_mipsel.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge9_mipsel.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge9_powerpc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge9_powerpc.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge9_s390.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge9_s390.deb -
Debian mozilla-firefox-dom-inspector_1.0.4-2sarge9_sparc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-dom-inspector_1.0.4-2sarge9_sparc.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge12_alpha.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge12_alpha.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge12_amd64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge12_amd64.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge12_arm.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge12_arm.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge12_hppa.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge12_hppa.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge12_i386.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge12_i386.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge12_ia64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge12_ia64.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge12_m68k.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge12_m68k.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge12_mips.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge12_mips.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge12_mipsel.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge12_mipsel.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge12_powerpc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge12_powerpc.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge12_s390.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge12_s390.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge12_sparc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge12_sparc.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge9_alpha.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge9_alpha.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge9_amd64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge9_amd64.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge9_arm.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge9_arm.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge9_hppa.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge9_hppa.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge9_i386.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge9_i386.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge9_ia64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge9_ia64.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge9_m68k.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge9_m68k.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge9_mips.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge9_mips.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge9_mipsel.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge9_mipsel.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge9_powerpc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge9_powerpc.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge9_s390.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge9_s390.deb -
Debian mozilla-firefox-gnome-support_1.0.4-2sarge9_sparc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox-gnome-support_1.0.4-2sarge9_sparc.deb -
Debian mozilla-firefox_1.0.4-2sarge12_alpha.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge12_alpha.deb -
Debian mozilla-firefox_1.0.4-2sarge12_amd64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge12_amd64.deb -
Debian mozilla-firefox_1.0.4-2sarge12_arm.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge12_arm.deb -
Debian mozilla-firefox_1.0.4-2sarge12_hppa.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge12_hppa.deb -
Debian mozilla-firefox_1.0.4-2sarge12_i386.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge12_i386.deb -
Debian mozilla-firefox_1.0.4-2sarge12_ia64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge12_ia64.deb -
Debian mozilla-firefox_1.0.4-2sarge12_m68k.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge12_m68k.deb -
Debian mozilla-firefox_1.0.4-2sarge12_mips.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge12_mips.deb -
Debian mozilla-firefox_1.0.4-2sarge12_mipsel.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge12_mipsel.deb -
Debian mozilla-firefox_1.0.4-2sarge12_powerpc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge12_powerpc.deb -
Debian mozilla-firefox_1.0.4-2sarge12_s390.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge12_s390.deb -
Debian mozilla-firefox_1.0.4-2sarge12_sparc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge12_sparc.deb -
Debian mozilla-firefox_1.0.4-2sarge9_alpha.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge9_alpha.deb -
Debian mozilla-firefox_1.0.4-2sarge9_amd64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge9_amd64.deb -
Debian mozilla-firefox_1.0.4-2sarge9_arm.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge9_arm.deb -
Debian mozilla-firefox_1.0.4-2sarge9_hppa.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge9_hppa.deb -
Debian mozilla-firefox_1.0.4-2sarge9_i386.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge9_i386.deb -
Debian mozilla-firefox_1.0.4-2sarge9_ia64.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge9_ia64.deb -
Debian mozilla-firefox_1.0.4-2sarge9_m68k.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge9_m68k.deb -
Debian mozilla-firefox_1.0.4-2sarge9_mips.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge9_mips.deb -
Debian mozilla-firefox_1.0.4-2sarge9_mipsel.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge9_mipsel.deb -
Debian mozilla-firefox_1.0.4-2sarge9_powerpc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge9_powerpc.deb -
Debian mozilla-firefox_1.0.4-2sarge9_s390.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge9_s390.deb -
Debian mozilla-firefox_1.0.4-2sarge9_sparc.deb
Debian GNU/Linux 3.1 alias sarge
http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla -firefox_1.0.4-2sarge9_sparc.deb
Apple Safari 1.1
-
Apple Safari4.0Leo.dmg
http://www.apple.com/safari/download/ -
Apple Safari4.0Ti.dmg
http://www.apple.com/safari/download/
Apple Safari 1.2
-
Apple Safari4.0Leo.dmg
http://www.apple.com/safari/download/ -
Apple Safari4.0Ti.dmg
http://www.apple.com/safari/download/
Apple Safari 1.2.2
-
Apple Safari4.0Leo.dmg
http://www.apple.com/safari/download/ -
Apple Safari4.0Ti.dmg
http://www.apple.com/safari/download/
Apple Safari 1.2.3
-
Apple Safari4.0Leo.dmg
http://www.apple.com/safari/download/ -
Apple Safari4.0Ti.dmg
http://www.apple.com/safari/download/
Apple Safari 1.3
-
Apple Safari4.0Leo.dmg
http://www.apple.com/safari/download/ -
Apple Safari4.0Ti.dmg
http://www.apple.com/safari/download/
Mozilla Thunderbird 1.5
-
SuSE MozillaThunderbird-1.5.0.4-2.1.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaThunderbird-1. 5.0.4-2.1.i586.rpm -
SuSE MozillaThunderbird-1.5.0.4-2.1.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/MozillaThunderbird-1.5 .0.4-2.1.ppc.rpm -
SuSE MozillaThunderbird-1.5.0.4-2.1.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/MozillaThunderbird- 1.5.0.4-2.1.x86_64.rpm -
SuSE MozillaThunderbird-translations-1.5.0.4-2.1.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaThunderbird-tr anslations-1.5.0.4-2.1.i586.rpm -
SuSE MozillaThunderbird-translations-1.5.0.4-2.1.ppc.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/MozillaThunderbird-tra nslations-1.5.0.4-2.1.ppc.rpm -
SuSE MozillaThunderbird-translations-1.5.0.4-2.1.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/MozillaThunderbird- translations-1.5.0.4-2.1.x86_64.rpm
Apple Safari 2.0.1
-
Apple Safari4.0Leo.dmg
http://www.apple.com/safari/download/ -
Apple Safari4.0Ti.dmg
http://www.apple.com/safari/download/
Apple Safari 2.0.2
-
Apple Safari4.0Leo.dmg
http://www.apple.com/safari/download/ -
Apple Safari4.0Ti.dmg
http://www.apple.com/safari/download/
Apple Safari 2.0.3
-
Apple Safari4.0Leo.dmg
http://www.apple.com/safari/download/ -
Apple Safari4.0Ti.dmg
http://www.apple.com/safari/download/
Apple Safari 3.1.1 for Windows
-
Apple SafariQuickTimeSetup.exe
Safari4
http://www.apple.com/safari/download/ -
Apple SafariSetup.exe
Safari4
http://www.apple.com/safari/download/
Apple Safari 3.2.3 for Windows
-
Apple SafariQuickTimeSetup.exe
Safari4
http://www.apple.com/safari/download/ -
Apple SafariSetup.exe
Safari4
http://www.apple.com/safari/download/
References
Mozilla Firefox, SeaMonkey, Camino, and Thunderbird Multiple Remote Vulnerabilities
References:
References:
- Camino 1.0.2 Release Notes (Mozilla)
- Cisco NX-OS Download Page (Cisco)
- HPSBUX02153 SSRT061181 rev.1 - HP-UX Running Firefox, Remote Unauthorized Access (Hewlett-Packard )
- HPSBUX02156 SSRT061236 rev.1 - HP-UX Running Thunderbird, Remote Unauthorized Ac (Hewlett-Packard )
- MFSA 2006-31 - EvalInSandbox escape (Proxy Autoconfig, Greasemonkey) (Mozilla)
- MFSA 2006-32 - Fixes for potential memory corruption (Mozilla)
- MFSA 2006-33 - HTTP response smuggling (Mozilla)
- MFSA 2006-36 - PLUGINSPAGE privileged JavaScript execution II (Mozilla)
- MFSA 2006-39 - View Image local resource linking (Windows) (Mozilla)
- MFSA 2006-41 - File stealing by changing input type (variant) (Mozilla)
- MFSA2006-34 - XSS viewing javascript: frames or images from context menu (Mozilla)
- MFSA2006-35 - Privilege escalation through XUL persist. (Mozilla)
- MFSA2006-37 - Remote compromise via content-defined setter on object prototypes (Mozilla)
- MFSA2006-38 - Buffer overflow in crypto.signText() (Mozilla)
- MFSA2006-40 - Double-free on malformed VCard (Mozilla)
- MFSA2006-42 - Web site XSS using BOM on UTF-8 pages (Mozilla)
- MFSA2006-43 - Privilege escalation using addSelectionListener (Mozilla)
- Mozilla Homepage (Mozilla Foundation)
- RHSA-2006:0578-10 - seamonkey security update (was mozilla) (Red Hat)
- RHSA-2006:0594-9 - seamonkey security update (was mozilla) (Red Hat)
- RHSA-2006:0609-9 - seamonkey security update (Red Hat)
- RHSA-2006:0610-4 - firefox security update (RedHat)
- RHSA-2006:0611-3 - thunderbird security update (RedHat)
- Sun Alert ID: 102943 (Sun Microsystems)
- Technical Cyber Security Alert TA06-153A - Mozilla Products Contain Multiple Vul (US-CERT)
- VU#237257 - Mozilla privilege escalation using addSelectionListener (US-CERT)
- VU#243153 - Mozilla may associate persisted XUL attributes with an incorrect URL (US-CERT)
- VU#398492 - Mozilla Firefox may allow chrome URLs to reference remote files (US-Cert)
- VU#421529 - Mozilla contains a buffer overflow vulnerability in crypto.signText( (US-CERT)
- VU#466673 - Mozilla contains multiple memory corruption vulnerabilities (US-CERT)
- VU#575969 - Mozilla may process content-defined setters on object prototypes wit (US-CERT)
- HPSBUX02153 SSRT061181 rev.5 - HP-UX Running Firefox, Remote Unauthorized Access (HP)
- HPSBUX02156 SSRT061236 rev.2 - HP-UX Running (HP)
- HPSBUX02156 SSRT061236 rev.3 - HP-UX Running Thunderbird, Remote Unauthorized Ac (HP)
- Multiple Security Vulnerabilites in Mozilla 1.7 for Solaris 8, 9, and 10 (Sun Microsystems)
- Sun Alert ID 102800 Security Vulnerabilities in Mozilla 1.7 for Solaris 8, 9 and (Sun)
- Sun Alert ID: 102763 - Multiple Security Vulnerabilites in Mozilla 1.7 for Solar (Sun)