Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2007-2021 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2007-1083.NASL
HistoryDec 24, 2007 - 12:00 a.m.

RHEL 4 / 5 : thunderbird (RHSA-2007:1083)

2007-12-2400:00:00
This script is Copyright (C) 2007-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
JSON

Updated thunderbird packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5.

This update has been rated as having moderate security impact by the Red Hat Security Response Team.

Mozilla Thunderbird is a standalone mail and newsgroup client.

A cross-site scripting flaw was found in the way Thunderbird handled the jar: URI scheme. It may be possible for a malicious HTML mail message to leverage this flaw, and conduct a cross-site scripting attack against a user running Thunderbird. (CVE-2007-5947)

Several flaws were found in the way Thunderbird processed certain malformed HTML mail content. A HTML mail message containing malicious content could cause Thunderbird to crash, or potentially execute arbitrary code as the user running Thunderbird. (CVE-2007-5959)

A race condition existed when Thunderbird set the ‘window.location’ property when displaying HTML mail content. This flaw could allow a HTML mail message to set an arbitrary Referer header, which may lead to a Cross-site Request Forgery (CSRF) attack against websites that rely only on the Referer header for protection. (CVE-2007-5960)

All users of thunderbird are advised to upgrade to these updated packages, which contain backported patches to resolve these issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2007:1083. The text 
# itself is copyright (C) Red Hat, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(29773);
  script_version("1.24");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2007-5947", "CVE-2007-5959", "CVE-2007-5960");
  script_bugtraq_id(26385, 26589, 26593);
  script_xref(name:"RHSA", value:"2007:1083");

  script_name(english:"RHEL 4 / 5 : thunderbird (RHSA-2007:1083)");
  script_summary(english:"Checks the rpm output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Red Hat host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Updated thunderbird packages that fix several security issues are now
available for Red Hat Enterprise Linux 4 and 5.

This update has been rated as having moderate security impact by the
Red Hat Security Response Team.

Mozilla Thunderbird is a standalone mail and newsgroup client.

A cross-site scripting flaw was found in the way Thunderbird handled
the jar: URI scheme. It may be possible for a malicious HTML mail
message to leverage this flaw, and conduct a cross-site scripting
attack against a user running Thunderbird. (CVE-2007-5947)

Several flaws were found in the way Thunderbird processed certain
malformed HTML mail content. A HTML mail message containing malicious
content could cause Thunderbird to crash, or potentially execute
arbitrary code as the user running Thunderbird. (CVE-2007-5959)

A race condition existed when Thunderbird set the 'window.location'
property when displaying HTML mail content. This flaw could allow a
HTML mail message to set an arbitrary Referer header, which may lead
to a Cross-site Request Forgery (CSRF) attack against websites that
rely only on the Referer header for protection. (CVE-2007-5960)

All users of thunderbird are advised to upgrade to these updated
packages, which contain backported patches to resolve these issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2007-5947"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2007-5959"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2007-5960"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/errata/RHSA-2007:1083"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected thunderbird package."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:ND/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(22, 79);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:thunderbird");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:4");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:4.6");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:5");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:5.1");

  script_set_attribute(attribute:"vuln_publication_date", value:"2007/11/13");
  script_set_attribute(attribute:"patch_publication_date", value:"2007/12/19");
  script_set_attribute(attribute:"plugin_publication_date", value:"2007/12/24");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2007-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Red Hat Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! preg(pattern:"^(4|5)([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 4.x / 5.x", "Red Hat " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);

yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo)) 
{
  rhsa = "RHSA-2007:1083";
  yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
  if (!empty_or_null(yum_report))
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : yum_report 
    );
    exit(0);
  }
  else
  {
    audit_message = "affected by Red Hat security advisory " + rhsa;
    audit(AUDIT_OS_NOT, audit_message);
  }
}
else
{
  flag = 0;
  if (rpm_check(release:"RHEL4", reference:"thunderbird-1.5.0.12-7.el4")) flag++;


  if (rpm_check(release:"RHEL5", cpu:"i386", reference:"thunderbird-1.5.0.12-7.el5")) flag++;

  if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"thunderbird-1.5.0.12-7.el5")) flag++;


  if (flag)
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : rpm_report_get() + redhat_report_package_caveat()
    );
    exit(0);
  }
  else
  {
    tested = pkg_tests_get();
    if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
    else audit(AUDIT_PACKAGE_NOT_INSTALLED, "thunderbird");
  }
}
VendorProductVersionCPE
redhatenterprise_linuxthunderbirdp-cpe:/a:redhat:enterprise_linux:thunderbird
redhatenterprise_linux4cpe:/o:redhat:enterprise_linux:4
redhatenterprise_linux4.6cpe:/o:redhat:enterprise_linux:4.6
redhatenterprise_linux5cpe:/o:redhat:enterprise_linux:5
redhatenterprise_linux5.1cpe:/o:redhat:enterprise_linux:5.1

Related

oraclelinux 3
openvas 95
nessus 33
osv 3
suse 1
ubuntu 2
debian 2
fedora 1
centos 4
redhat 3
gentoo 1
securityvulns 5
prion 4
mozilla 3
checkpoint_advisories 1
veracode 3
freebsd 1
ubuntucve 4
cve 4
cert 1
seebug 1
oraclelinux
oraclelinux
Critical: firefox security update
2007-11-27 00:00:00
Moderate: thunderbird security update
2007-12-19 00:00:00
Critical: seamonkey security update
2007-11-27 00:00:00
openvas
openvas
SLES9: Security update for Mozilla
2009-10-10 00:00:00
Fedora Update for ruby-gnome2 FEDORA-2007-3962
2009-02-27 00:00:00
Mandriva Update for mozilla-firefox MDKSA-2007:246 (mozilla-firefox)
2009-04-09 00:00:00
nessus
nessus
CentOS 4 / 5 : thunderbird (CESA-2007:1083)
2007-12-24 00:00:00
Scientific Linux Security Update : thunderbird on SL5.x, SL4.x i386/x86_64
2012-08-01 00:00:00
Scientific Linux Security Update : seamonkey on SL4.x, SL3.x i386/x86_64
2012-08-01 00:00:00
osv
osv
iceweasel - several vulnerabilities
2007-12-08 00:00:00
xulrunner - several vulnerabilities
2007-12-08 00:00:00
iceape - several vulnerabilities
2008-02-24 00:00:00
suse
suse
remote code execution in MozillaFirefox
2007-12-05 17:10:54
ubuntu
ubuntu
Firefox regression
2007-12-04 00:00:00
Firefox vulnerabilities
2007-11-26 00:00:00
debian
debian
[SECURITY] [DSA 1425-1] New xulrunner packages fix several vulnerabilities
2007-12-08 11:40:53
[SECURITY] [DSA 1424-1] New iceweasel packages fix several vulnerabilities
2007-12-08 11:34:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: firefox-1.5.0.12-7.fc6
2007-12-03 15:43:57
centos
centos
firefox security update
2007-11-29 13:07:34
seamonkey security update
2007-11-30 03:00:22
seamonkey security update
2007-11-28 19:08:58
redhat
redhat
(RHSA-2007:1084) Critical: seamonkey security update
2007-11-26 00:00:00
(RHSA-2007:1082) Critical: firefox security update
2007-11-26 00:00:00
(RHSA-2007:1083) Moderate: thunderbird security update
2007-12-19 00:00:00
gentoo
gentoo
Mozilla Firefox, SeaMonkey: Multiple vulnerabilities
2007-12-29 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Seamonkey multiple security vulnerabilities
2007-11-27 00:00:00
Mozilla Forefox jar: URL crossite scripting
2007-11-27 00:00:00
Mozilla Foundation Security Advisory 2007-38
2007-11-27 00:00:00
prion
prion
Cross site scripting
2007-11-14 01:46:00
Memory corruption
2007-11-26 23:46:00
Design/Logic Flaw
2007-11-26 23:46:00
mozilla
mozilla
jar: URI scheme XSS hazard — Mozilla
2007-11-26 00:00:00
Memory corruption vulnerabilities (rv:1.8.1.10) — Mozilla
2007-11-26 00:00:00
Referer-spoofing via window.location race condition — Mozilla
2007-11-26 00:00:00
checkpoint_advisories
checkpoint_advisories
Mozilla Firefox Layout Frame Constructor Memory Corruption (CVE-2007-5959)
2010-02-24 00:00:00
veracode
veracode
Cross-Site Request Forgery (CSRF)
2020-04-10 00:18:43
Arbitrary Code Execution
2020-04-10 00:18:42
Cross-Site Scripting (XSS)
2020-04-10 00:18:41
freebsd
freebsd
firefox -- multiple remote unspecified memory corruption vulnerabilities
2007-11-26 00:00:00
ubuntucve
ubuntucve
CVE-2007-5959
2007-11-26 00:00:00
CVE-2007-5947
2007-11-14 00:00:00
CVE-2007-5960
2007-11-26 00:00:00
cve
cve
CVE-2007-5959
2007-11-26 23:46:00
CVE-2007-5947
2007-11-14 01:46:00
CVE-2007-5960
2007-11-26 23:46:00
cert
cert
Mozilla-based browsers jar: URI cross-site scripting vulnerability
2007-11-08 00:00:00
seebug
seebug
Mozilla Firefox及SeaMonkey Windows.Location属性HTTP Referer头欺骗漏洞
2007-11-29 00:00:00
JSON
Related for REDHAT-RHSA-2007-1083.NASL
oraclelinux3openvas95nessus33osv3suse1ubuntu2debian2fedora1centos4redhat3gentoo1securityvulns5prion4mozilla3checkpoint_advisories1veracode3freebsd1ubuntucve4cve4cert1seebug1