Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2006-2021 Tenable Network Security, Inc.MANDRAKE_MDKSA-2006-078.NASL
HistoryApr 26, 2006 - 12:00 a.m.

Mandrake Linux Security Advisory : mozilla-thunderbird (MDKSA-2006:078)

2006-04-2600:00:00
This script is Copyright (C) 2006-2021 Tenable Network Security, Inc.
www.tenable.com
15
JSON

A number of vulnerabilities have been discovered in the Mozilla Thunderbird email client that could allow a remote attacker to craft malicious web emails that could take advantage of these issues to execute arbitrary code with elevated privileges, spoof content, and steal local files, or other information. As well, some of these vulnerabilities can be exploited to execute arbitrary code with the privileges of the user running the program.

As well, two crasher bugs have been fixed as well.

The updated packages have been patched to fix these problems.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandrake Linux Security Advisory MDKSA-2006:078. 
# The text itself is copyright (C) Mandriva S.A.
#

if (NASL_LEVEL < 3000) exit(0);

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(21284);
  script_version("1.19");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2006-0292", "CVE-2006-0293", "CVE-2006-0296", "CVE-2006-0748", "CVE-2006-0749", "CVE-2006-0884", "CVE-2006-1045", "CVE-2006-1727", "CVE-2006-1728", "CVE-2006-1730", "CVE-2006-1731", "CVE-2006-1732", "CVE-2006-1733", "CVE-2006-1734", "CVE-2006-1735", "CVE-2006-1737", "CVE-2006-1738", "CVE-2006-1739", "CVE-2006-1741", "CVE-2006-1742", "CVE-2006-1790");
  script_xref(name:"MDKSA", value:"2006:078");

  script_name(english:"Mandrake Linux Security Advisory : mozilla-thunderbird (MDKSA-2006:078)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandrake Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"A number of vulnerabilities have been discovered in the Mozilla
Thunderbird email client that could allow a remote attacker to craft
malicious web emails that could take advantage of these issues to
execute arbitrary code with elevated privileges, spoof content, and
steal local files, or other information. As well, some of these
vulnerabilities can be exploited to execute arbitrary code with the
privileges of the user running the program.

As well, two crasher bugs have been fixed as well.

The updated packages have been patched to fix these problems."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.mozilla.org/show_bug.cgi?id=275896"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.mozilla.org/show_bug.cgi?id=330900"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Update the affected mozilla-thunderbird, mozilla-thunderbird-enigmail
and / or mozilla-thunderbird-enigmime packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_cwe_id(20, 79, 119, 189, 264, 399);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:mozilla-thunderbird");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:mozilla-thunderbird-enigmail");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:mozilla-thunderbird-enigmime");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux:2006");

  script_set_attribute(attribute:"patch_publication_date", value:"2006/04/25");
  script_set_attribute(attribute:"plugin_publication_date", value:"2006/04/26");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2006-2021 Tenable Network Security, Inc.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK2006.0", reference:"mozilla-thunderbird-1.0.6-7.6.20060mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK2006.0", reference:"mozilla-thunderbird-enigmail-1.0.6-7.6.20060mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK2006.0", reference:"mozilla-thunderbird-enigmime-1.0.6-7.6.20060mdk", yank:"mdk")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxmozilla-thunderbirdp-cpe:/a:mandriva:linux:mozilla-thunderbird
mandrivalinuxmozilla-thunderbird-enigmailp-cpe:/a:mandriva:linux:mozilla-thunderbird-enigmail
mandrivalinuxmozilla-thunderbird-enigmimep-cpe:/a:mandriva:linux:mozilla-thunderbird-enigmime
mandrivalinux2006cpe:/o:mandriva:linux:2006

References

Related

nessus 44
ubuntu 3
centos 7
openvas 17
redhat 5
gentoo 3
debian 8
osv 3
suse 3
securityvulns 3
freebsd 1
mozilla 15
cert 9
cve 17
ubuntucve 17
debiancve 16
prion 18
checkpoint_advisories 8
zdi 2
nessus
nessus
Ubuntu 5.04 / 5.10 : mozilla-thunderbird vulnerabilities (USN-276-1)
2006-05-03 00:00:00
Fedora Core 4 : thunderbird-1.0.8-1.1.fc4 (2006-489)
2007-01-17 00:00:00
Fedora Core 5 : thunderbird-1.5.0.2-1.1.fc5 (2006-490)
2007-01-17 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2006-05-03 00:00:00
Mozilla vulnerabilities
2006-04-28 00:00:00
Firefox vulnerabilities
2006-04-20 00:00:00
centos
centos
thunderbird security update
2006-04-21 17:41:34
galeon, mozilla security update
2006-04-18 23:53:59
firefox security update
2006-04-14 18:00:35
openvas
openvas
Gentoo Security Advisory GLSA 200605-09 (mozilla-thunderbird)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200605-09 (mozilla-thunderbird)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200604-18 (mozilla)
2008-09-24 00:00:00
redhat
redhat
(RHSA-2006:0330) thunderbird security update
2006-04-21 00:00:00
(RHSA-2006:0329) mozilla security update
2006-04-18 00:00:00
(RHSA-2006:0328) firefox security update
2006-04-14 00:00:00
gentoo
gentoo
Mozilla Thunderbird: Multiple vulnerabilities
2006-05-08 00:00:00
Mozilla Suite: Multiple vulnerabilities
2006-04-28 00:00:00
Mozilla Firefox: Multiple vulnerabilities
2006-04-23 00:00:00
debian
debian
[SECURITY] [DSA 1044-1] New Mozilla Firefox packages fix several vulnerabilities
2006-04-26 16:02:42
[SECURITY] [DSA 1044-1] New Mozilla Firefox packages fix several vulnerabilities
2006-04-26 16:58:22
[SECURITY] [DSA 1044-1] New Mozilla Firefox packages fix several vulnerabilities
2006-04-26 16:02:42
osv
osv
mozilla-firefox - several
2006-04-26 00:00:00
mozilla-thunderbird - several vulnerabilities
2006-05-04 00:00:00
mozilla - several
2006-04-27 00:00:00
suse
suse
remote code execution in MozillaFirefox,mozilla
2006-04-20 13:13:08
remote code execution in MozillaThunderbird
2006-04-25 13:15:04
remote code execution in phpMyAdmin
2006-01-26 13:53:52
securityvulns
securityvulns
US-CERT Technical Cyber Security Alert TA06-107A -- Mozilla Products Contain Multiple Vulnerabilities
2006-04-18 00:00:00
[Full-disclosure] ZDI-06-011: Mozilla Firefox Table Rebuilding Code Execution Vulnerability
2006-04-26 00:00:00
[Full-disclosure] ZDI-06-010: Mozilla Firefox CSS Letter-Spacing Heap Overflow Vulnerability
2006-04-15 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2006-04-13 00:00:00
mozilla
mozilla
Crashes with evidence of memory corruption (rv:1.8) — Mozilla
2006-04-13 00:00:00
JavaScript garbage-collection hazards — Mozilla
2006-02-01 00:00:00
Cross-site scripting using .valueOf.call() — Mozilla
2006-04-13 00:00:00
cert
cert
Mozilla crypto.generateCRMFRequest() vulnerability
2006-04-17 00:00:00
Mozilla products JavaScript engine fail to properly handle garbage-collection
2006-04-17 00:00:00
Mozilla-based products fail to validate user input to the attribute name in "XULDocument.persist"
2006-02-03 00:00:00
cve
cve
CVE-2006-1731
2006-04-14 10:02:00
CVE-2006-1727
2006-04-14 10:02:00
CVE-2006-1742
2006-04-14 10:02:00
ubuntucve
ubuntucve
CVE-2006-1731
2006-04-14 00:00:00
CVE-2006-1742
2006-04-14 00:00:00
CVE-2006-1045
2006-03-07 00:00:00
debiancve
debiancve
CVE-2006-1742
2006-04-14 10:02:00
CVE-2006-1045
2006-03-07 11:02:00
CVE-2006-1727
2006-04-14 10:02:00
prion
prion
Memory corruption
2006-04-14 10:02:00
Design/Logic Flaw
2006-03-07 11:02:00
Design/Logic Flaw
2006-04-14 10:02:00
checkpoint_advisories
checkpoint_advisories
Mozilla Firefox CSS letter-spacing Heap Overflow - Ver2 (CVE-2006-1730)
2014-03-31 00:00:00
Mozilla Firefox Javascript XBL Compilation Code Execution - Ver2 (CVE-2006-1733)
2014-02-03 00:00:00
Mozilla Firefox CSS Border Width Memory Corruption - Ver2 (CVE-2006-1739)
2014-01-07 00:00:00
zdi
zdi
Mozilla Firefox CSS Letter-Spacing Heap Overflow Vulnerability
2006-04-17 00:00:00
Mozilla Firefox Table Rebuilding Code Execution Vulnerability
2006-04-25 00:00:00
JSON
Related for MANDRAKE_MDKSA-2006-078.NASL
nessus44ubuntu3centos7openvas17redhat5gentoo3debian8osv3suse3securityvulns3freebsd1mozilla15cert9cve17ubuntucve17debiancve16prion18checkpoint_advisories8zdi2