Lucene search

K
nessusTenable4448.PRM
HistoryMar 26, 2008 - 12:00 a.m.

SeaMonkey < 1.1.9 Multiple Vulnerabilities

2008-03-2600:00:00
Tenable
www.tenable.com
19

The installed version of SeaMonkey is affected by various security issues :

  • A series of vulnerabilities that allow for JavaScript privilege escalation and arbitrary code execution.
  • Several stability bugs leading to crashes that, in some cases, show traces of memory corruption.
  • An HTTP Referer spoofing issue with malformed URLs.
  • A privacy issue with SSL client authentication.
  • Web content fetched via the β€˜jar:’ protocol can use Java via LiveConnect to open socket connections to arbitrary ports on the localhost.
  • It is possible to have a background tab create a borderless XUL pop-up in front of the active tab in the user’s browser.
Binary data 4448.prm
VendorProductVersion
mozillaseamonkey

References