Mozilla Firefox, SeaMonkey: Multiple vulnerabilities

🗓️ 29 Dec 2007 00:00:00Reported by Gentoo FoundationType

Mozilla Firefox and SeaMonkey: Multiple vulnerabilities reported in jar protocol handler, window.location property, and memory errors.Could lead to code execution, Cross-Site-Scripting, and Cross-Site Request Forgery attacks. Upgrade to the latest versions to resolve

Reporter	Title	Published	Views	Family All 203
Tenable Nessus	Mozilla Firefox < 2.0.0.10 Multiple Vulnerabilities	27 Nov 200700:00	–	nessus
Tenable Nessus	SeaMonkey < 1.1.7 Multiple Vulnerabilities	27 Nov 200700:00	–	nessus
Tenable Nessus	CentOS 4 : firefox (CESA-2007:1082)	23 Apr 200900:00	–	nessus
Tenable Nessus	CentOS 4 / 5 : thunderbird (CESA-2007:1083)	24 Dec 200700:00	–	nessus
Tenable Nessus	CentOS 3 / 4 : seamonkey (CESA-2007:1084)	23 Apr 200900:00	–	nessus
Tenable Nessus	Debian DSA-1424-1 : iceweasel - several vulnerabilities	11 Dec 200700:00	–	nessus
Tenable Nessus	Debian DSA-1425-1 : xulrunner - several vulnerabilities	11 Dec 200700:00	–	nessus
Tenable Nessus	Fedora 7 : Miro-1.0-2.fc7 / blam-1.8.3-10.fc7 / chmsee-1.0.0-1.27.fc7 / devhelp-0.13-12.fc7 / etc (2007-3952)	29 Nov 200700:00	–	nessus
Tenable Nessus	Fedora 8 : Miro-1.0-2.fc8 / blam-1.8.3-12.fc8 / chmsee-1.0.0-1.27.fc8 / devhelp-0.16.1-4.fc8 / etc (2007-3962)	29 Nov 200700:00	–	nessus
Tenable Nessus	Fedora 8 : seamonkey-1.1.7-1.fc8 (2007-4098)	11 Dec 200700:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Gentoo	any	all	www-client/mozilla-firefox	2.0.0.11	UNKNOWN
Gentoo	any	all	www-client/mozilla-firefox-bin	2.0.0.11	UNKNOWN
Gentoo	any	all	www-client/seamonkey	1.1.7	UNKNOWN
Gentoo	any	all	www-client/seamonkey-bin	1.1.7	UNKNOWN

29 Dec 2007 00:00Current

7.6High risk

Vulners AI Score7.6

CVSS 29.3

EPSS0.13311