Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-2345.NASL
HistoryNov 14, 2011 - 12:00 a.m.

Debian DSA-2345-1 : icedove - several vulnerabilities

2011-11-1400:00:00
This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
JSON

Several vulnerabilities have been discovered in Icedove, a mail client based on Thunderbird.

  • CVE-2011-3647 The JSSubScriptLoader does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it easier for remote attackers to gain privileges via a crafted website that leverages certain unwrapping behavior.

  • CVE-2011-3648 A cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML via crafted text with Shift JIS encoding.

  • CVE-2011-3650 Iceweasel does not properly handle JavaScript files that contain many functions, which allows user-assisted remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a crafted file that is accessed by debugging APIs, as demonstrated by Firebug.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-2345. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(56786);
  script_version("1.16");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2011-3647", "CVE-2011-3648", "CVE-2011-3650");
  script_bugtraq_id(50589, 50593, 50595);
  script_xref(name:"DSA", value:"2345");

  script_name(english:"Debian DSA-2345-1 : icedove - several vulnerabilities");
  script_summary(english:"Checks dpkg output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Debian host is missing a security-related update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Several vulnerabilities have been discovered in Icedove, a mail client
based on Thunderbird.

  - CVE-2011-3647
    The JSSubScriptLoader does not properly handle
    XPCNativeWrappers during calls to the loadSubScript
    method in an add-on, which makes it easier for remote
    attackers to gain privileges via a crafted website that
    leverages certain unwrapping behavior.

  - CVE-2011-3648
    A cross-site scripting (XSS) vulnerability allows remote
    attackers to inject arbitrary web script or HTML via
    crafted text with Shift JIS encoding.

  - CVE-2011-3650
    Iceweasel does not properly handle JavaScript files that
    contain many functions, which allows user-assisted
    remote attackers to cause a denial of service (memory
    corruption and application crash) or possibly have
    unspecified other impact via a crafted file that is
    accessed by debugging APIs, as demonstrated by Firebug."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2011-3647"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2011-3648"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2011-3650"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://packages.debian.org/source/squeeze/icedove"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.debian.org/security/2011/dsa-2345"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Upgrade the icedove packages.

For the stable distribution (squeeze), these problems have been fixed
in version 3.0.11-1+squeeze6."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:icedove");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:6.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2011/11/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2011/11/14");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"6.0", prefix:"icedove", reference:"3.0.11-1+squeeze6")) flag++;
if (deb_check(release:"6.0", prefix:"icedove-dbg", reference:"3.0.11-1+squeeze6")) flag++;
if (deb_check(release:"6.0", prefix:"icedove-dev", reference:"3.0.11-1+squeeze6")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
debiandebian_linuxicedovep-cpe:/a:debian:debian_linux:icedove
debiandebian_linux6.0cpe:/o:debian:debian_linux:6.0

Related

openvas 61
nessus 49
osv 3
oraclelinux 4
redhat 4
debian 4
suse 7
centos 3
ubuntu 5
securityvulns 4
freebsd 1
prion 3
cve 3
veracode 3
mozilla 3
ubuntucve 3
gentoo 1
openvas
openvas
RedHat Update for firefox RHSA-2011:1437-01
2011-11-11 00:00:00
Debian: Security Advisory (DSA-2342-1)
2012-02-11 00:00:00
RedHat Update for thunderbird RHSA-2011:1439-01
2012-07-09 00:00:00
nessus
nessus
Scientific Linux Security Update : firefox on SL4.x, SL5.x, SL6.x i386/x86_64
2012-08-01 00:00:00
Mozilla Firefox < 3.6.24 Multiple Vulnerabilities
2016-06-24 00:00:00
Oracle Linux 4 / 5 / 6 : firefox (ELSA-2011-1437)
2013-07-12 00:00:00
osv
osv
iceape - several
2011-11-09 00:00:00
icedove - several
2011-11-11 00:00:00
iceweasel - several
2011-11-09 00:00:00
oraclelinux
oraclelinux
firefox security update
2011-11-09 00:00:00
thunderbird security update
2011-11-09 00:00:00
seamonkey security update
2011-11-09 00:00:00
redhat
redhat
(RHSA-2011:1437) Critical: firefox security update
2011-11-08 00:00:00
(RHSA-2011:1439) Critical: thunderbird security update
2011-11-08 00:00:00
(RHSA-2011:1440) Moderate: seamonkey security update
2011-11-08 00:00:00
debian
debian
[SECURITY] [DSA 2341-1] iceweasel security update
2011-11-09 17:00:08
[BSA-056] Security update for Iceweasel
2011-11-16 11:46:20
[SECURITY] [DSA 2342-1] iceape security update
2011-11-09 17:27:12
suse
suse
MozillaFirefox (critical)
2011-11-15 15:08:31
Security update for MozillaFirefox (critical)
2011-11-18 22:08:45
MozillaFirefox secuirty update (critical)
2011-11-15 15:08:39
centos
centos
firefox, xulrunner security update
2011-11-09 20:48:22
thunderbird security update
2011-11-09 20:49:13
seamonkey security update
2011-11-09 20:48:43
ubuntu
ubuntu
Firefox and Xulrunner vulnerabilities
2011-11-10 00:00:00
Thunderbird vulnerabilities
2011-12-22 00:00:00
Thunderbird vulnerabilities
2011-11-28 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2011-11-25 00:00:00
Mozilla Foundation Security Advisory 2011-47
2011-11-25 00:00:00
Mozilla Foundation Security Advisory 2011-49
2011-11-25 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2011-11-08 00:00:00
prion
prion
Memory corruption
2011-11-09 11:55:00
Cross site scripting
2011-11-09 11:55:00
Design/Logic Flaw
2011-11-09 11:55:00
cve
cve
CVE-2011-3650
2011-11-09 11:55:00
CVE-2011-3648
2011-11-09 11:55:00
CVE-2011-3647
2011-11-09 11:55:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:06:25
Cross-Site Scripting (XSS)
2020-04-10 01:04:12
Privilege Escalation
2020-04-10 01:06:23
mozilla
mozilla
Potential XSS against sites using Shift-JIS — Mozilla
2011-11-08 00:00:00
Memory corruption while profiling using Firebug — Mozilla
2011-11-08 00:00:00
loadSubScript unwraps XPCNativeWrapper scope parameter (1.9.2 branch) — Mozilla
2011-11-08 00:00:00
ubuntucve
ubuntucve
CVE-2011-3650
2011-11-09 00:00:00
CVE-2011-3648
2011-11-09 00:00:00
CVE-2011-3647
2011-11-09 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
JSON
Related for DEBIAN_DSA-2345.NASL
openvas61nessus49osv3oraclelinux4redhat4debian4suse7centos3ubuntu5securityvulns4freebsd1prion3cve3veracode3mozilla3ubuntucve3gentoo1