seamonkey security update

{"result": {"cve": [{"id": "CVE-2008-2801", "type": "cve", "title": "CVE-2008-2801", "description": "Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not properly implement JAR signing, which allows remote attackers to execute arbitrary code via (1) injection of JavaScript into documents within a JAR archive or (2) a JAR archive that uses relative URLs to JavaScript files.", "published": "2008-07-07T19:41:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2801", "cvelist": ["CVE-2008-2801"], "lastseen": "2016-09-03T10:40:30"}, {"id": "CVE-2008-2799", "type": "cve", "title": "CVE-2008-2799", "description": "Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.15, Thunderbird 2.0.0.14 and earlier, and SeaMonkey before 1.1.10 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via unknown vectors related to the JavaScript engine.", "published": "2008-07-07T19:41:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2799", "cvelist": ["CVE-2008-2799"], "lastseen": "2016-09-03T10:40:28"}, {"id": "CVE-2008-2803", "type": "cve", "title": "CVE-2008-2803", "description": "The mozIJSSubScriptLoader.LoadScript function in Mozilla Firefox before 2.0.0.15, Thunderbird 2.0.0.14 and earlier, and SeaMonkey before 1.1.10 does not apply XPCNativeWrappers to scripts loaded from (1) file: URIs, (2) data: URIs, or (3) certain non-canonical chrome: URIs, which allows remote attackers to execute arbitrary code via vectors involving third-party add-ons.", "published": "2008-07-07T19:41:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2803", "cvelist": ["CVE-2008-2803"], "lastseen": "2016-09-03T10:40:33"}, {"id": "CVE-2008-2807", "type": "cve", "title": "CVE-2008-2807", "description": "Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not properly handle an invalid .properties file for an add-on, which allows remote attackers to read uninitialized memory, as demonstrated by use of ISO 8859 encoding instead of UTF-8 encoding in a French .properties file.", "published": "2008-07-07T19:41:00", "cvss": {"score": 5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2807", "cvelist": ["CVE-2008-2807"], "lastseen": "2016-09-03T10:40:36"}, {"id": "CVE-2008-2810", "type": "cve", "title": "CVE-2008-2810", "description": "Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not properly identify the context of Windows shortcut files, which allows user-assisted remote attackers to bypass the Same Origin Policy via a crafted web site for which the user has previously saved a shortcut.", "published": "2008-07-07T19:41:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2810", "cvelist": ["CVE-2008-2810"], "lastseen": "2016-09-03T10:40:39"}, {"id": "CVE-2008-2805", "type": "cve", "title": "CVE-2008-2805", "description": "Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 allow remote attackers to force the upload of arbitrary local files from a client computer via vectors involving originalTarget and DOM Range.", "published": "2008-07-07T19:41:00", "cvss": {"score": 5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2805", "cvelist": ["CVE-2008-2805"], "lastseen": "2016-09-03T10:40:35"}, {"id": "CVE-2008-2808", "type": "cve", "title": "CVE-2008-2808", "description": "Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not properly escape HTML in file:// URLs in directory listings, which allows remote attackers to conduct cross-site scripting (XSS) attacks or have unspecified other impact via a crafted filename.", "published": "2008-07-07T19:41:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2808", "cvelist": ["CVE-2008-2808"], "lastseen": "2016-09-03T10:40:36"}, {"id": "CVE-2008-2800", "type": "cve", "title": "CVE-2008-2800", "description": "Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 allow remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via vectors involving (1) an event handler attached to an outer window, (2) a SCRIPT element in an unloaded document, or (3) the onreadystatechange handler in conjunction with an XMLHttpRequest.", "published": "2008-07-07T19:41:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2800", "cvelist": ["CVE-2008-2800"], "lastseen": "2016-09-03T10:40:28"}, {"id": "CVE-2008-2802", "type": "cve", "title": "CVE-2008-2802", "description": "Mozilla Firefox before 2.0.0.15, Thunderbird 2.0.0.14 and earlier, and SeaMonkey before 1.1.10 allow remote attackers to execute arbitrary code via an XUL document that includes a script from a chrome: URI that points to a fastload file, related to this file's \"privilege level.\"", "published": "2008-07-07T19:41:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2802", "cvelist": ["CVE-2008-2802"], "lastseen": "2016-09-03T10:40:31"}, {"id": "CVE-2008-2809", "type": "cve", "title": "CVE-2008-2809", "description": "Mozilla 1.9 M8 and earlier, Mozilla Firefox 2 before 2.0.0.15, SeaMonkey 1.1.5 and other versions before 1.1.10, Netscape 9.0, and other Mozilla-based web browsers, when a user accepts an SSL server certificate on the basis of the CN domain name in the DN field, regard the certificate as also accepted for all domain names in subjectAltName:dNSName fields, which makes it easier for remote attackers to trick a user into accepting an invalid certificate for a spoofed web site.", "published": "2008-07-08T19:41:00", "cvss": {"score": 4, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2809", "cvelist": ["CVE-2008-2809"], "lastseen": "2016-09-03T10:40:38"}], "openvas": [{"id": "OPENVAS:61282", "type": "openvas", "title": "Debian Security Advisory DSA 1607-1 (iceweasel)", "description": "The remote host is missing an update to iceweasel\nannounced via advisory DSA 1607-1.", "published": "2008-07-15T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=61282", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-09-26T20:41:42"}, {"id": "OPENVAS:860805", "type": "openvas", "title": "Fedora Update for galeon FEDORA-2008-6127", "description": "Check for the Version of galeon", "published": "2009-02-17T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=860805", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-09-26T20:41:14"}, {"id": "OPENVAS:860779", "type": "openvas", "title": "Fedora Update for Miro FEDORA-2008-6127", "description": "Check for the Version of Miro", "published": "2009-02-17T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=860779", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-09-26T20:41:24"}, {"id": "OPENVAS:880039", "type": "openvas", "title": "CentOS Update for seamonkey CESA-2008:0547 centos3 x86_64", "description": "Check for the Version of seamonkey", "published": "2009-02-27T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=880039", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-09-26T20:41:09"}, {"id": "OPENVAS:870077", "type": "openvas", "title": "RedHat Update for seamonkey RHSA-2008:0547-01", "description": "Check for the Version of seamonkey", "published": "2009-03-06T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=870077", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-09-26T20:41:09"}, {"id": "OPENVAS:860179", "type": "openvas", "title": "Fedora Update for seamonkey FEDORA-2008-6196", "description": "Check for the Version of seamonkey", "published": "2009-02-17T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=860179", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-09-26T20:41:17"}, {"id": "OPENVAS:61366", "type": "openvas", "title": "Debian Security Advisory DSA 1615-1 (xulrunner)", "description": "The remote host is missing an update to xulrunner\nannounced via advisory DSA 1615-1.", "published": "2008-08-15T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=61366", "cvelist": ["CVE-2008-2933", "CVE-2008-2801", "CVE-2008-2785", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-09-26T20:41:41"}, {"id": "OPENVAS:800013", "type": "openvas", "title": "Mozilla Seamonkey Multiple Vulnerability July-08 (Windows)", "description": "The host is installed with Mozilla Seamonkey, that is prone to\n multiple vulnerabilities.", "published": "2008-10-06T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=800013", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798", "CVE-2008-2806"], "lastseen": "2016-10-10T12:51:09"}, {"id": "OPENVAS:65885", "type": "openvas", "title": "SLES10: Security update for MozillaFirefox", "description": "The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n MozillaFirefox\n MozillaFirefox-translations\n\n\nMore details may also be found by searching for the SuSE\nEnterprise Server 10 patch database located at\nhttp://download.novell.com/patch/finder/", "published": "2009-10-13T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=65885", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798", "CVE-2008-2806"], "lastseen": "2017-02-10T09:02:44"}, {"id": "OPENVAS:860125", "type": "openvas", "title": "Fedora Update for epiphany FEDORA-2008-6127", "description": "Check for the Version of epiphany", "published": "2009-02-17T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=860125", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-09-26T20:41:28"}], "redhat": [{"id": "RHSA-2008:0569", "type": "redhat", "title": "(RHSA-2008:0569) Critical: firefox security update", "description": "Mozilla Firefox is an open source Web browser.\n\nMultiple flaws were found in the processing of malformed JavaScript\ncontent. A web page containing such malicious content could cause Firefox\nto crash or, potentially, execute arbitrary code as the user running\nFirefox. (CVE-2008-2801, CVE-2008-2802, CVE-2008-2803)\n\nSeveral flaws were found in the processing of malformed web content. A web\npage containing malicious content could cause Firefox to crash or,\npotentially, execute arbitrary code as the user running Firefox.\n(CVE-2008-2798, CVE-2008-2799, CVE-2008-2811)\n\nSeveral flaws were found in the way malformed web content was displayed. A\nweb page containing specially-crafted content could potentially trick a\nFirefox user into surrendering sensitive information. (CVE-2008-2800)\n\nTwo local file disclosure flaws were found in Firefox. A web page\ncontaining malicious content could cause Firefox to reveal the contents of\na local file to a remote attacker. (CVE-2008-2805, CVE-2008-2810)\n\nA flaw was found in the way a malformed .properties file was processed by\nFirefox. A malicious extension could read uninitialized memory, possibly\nleaking sensitive data to the extension. (CVE-2008-2807)\n\nA flaw was found in the way Firefox escaped a listing of local file names.\nIf a user could be tricked into listing a local directory containing\nmalicious file names, arbitrary JavaScript could be run with the\npermissions of the user running Firefox. (CVE-2008-2808)\n\nA flaw was found in the way Firefox displayed information about self-signed\ncertificates. It was possible for a self-signed certificate to contain\nmultiple alternate name entries, which were not all displayed to the user,\nallowing them to mistakenly extend trust to an unknown site.\n(CVE-2008-2809)\n\nAll Mozilla Firefox users should upgrade to these updated packages, which\ncontain backported patches that correct these issues.", "published": "2008-07-02T04:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://access.redhat.com/errata/RHSA-2008:0569", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-09-04T11:17:43"}, {"id": "RHSA-2008:0547", "type": "redhat", "title": "(RHSA-2008:0547) RHSA-2008:0547", "description": "Critical: seamonkey security update\n\nSeaMonkey is an open source Web browser, advanced email and newsgroup\nclient, IRC chat client, and HTML editor.\n\nMultiple flaws were found in the processing of malformed JavaScript\ncontent. A web page containing such malicious content could cause SeaMonkey\nto crash or, potentially, execute arbitrary code as the user running\nSeaMonkey. (CVE-2008-2801, CVE-2008-2802, CVE-2008-2803)\n\nSeveral flaws were found in the processing of malformed web content. A web\npage containing malicious content could cause SeaMonkey to crash or,\npotentially, execute arbitrary code as the user running SeaMonkey.\n(CVE-2008-2798, CVE-2008-2799, CVE-2008-2811)\n\nSeveral flaws were found in the way malformed web content was displayed. A\nweb page containing specially-crafted content could potentially trick a\nSeaMonkey user into surrendering sensitive information. (CVE-2008-2800)\n\nTwo local file disclosure flaws were found in SeaMonkey. A web page\ncontaining malicious content could cause SeaMonkey to reveal the contents\nof a local file to a remote attacker. (CVE-2008-2805, CVE-2008-2810)\n\nA flaw was found in the way a malformed .properties file was processed by\nSeaMonkey. A malicious extension could read uninitialized memory, possibly\nleaking sensitive data to the extension. (CVE-2008-2807)\n\nA flaw was found in the way SeaMonkey escaped a listing of local file\nnames. If a user could be tricked into listing a local directory containing\nmalicious file names, arbitrary JavaScript could be run with the\npermissions of the user running SeaMonkey. (CVE-2008-2808)\n\nA flaw was found in the way SeaMonkey displayed information about\nself-signed certificates. It was possible for a self-signed certificate to\ncontain multiple alternate name entries, which were not all displayed to\nthe user, allowing them to mistakenly extend trust to an unknown site.\n(CVE-2008-2809)\n\nAll SeaMonkey users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues.\n", "published": "2008-07-02T04:00:00", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://access.redhat.com/errata/RHSA-2008:0547", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2017-06-05T07:51:17"}, {"id": "RHSA-2008:0616", "type": "redhat", "title": "(RHSA-2008:0616) Moderate: thunderbird security update", "description": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nMultiple flaws were found in the processing of malformed JavaScript\ncontent. An HTML mail containing such malicious content could cause\nThunderbird to crash or, potentially, execute arbitrary code as the user\nrunning Thunderbird. (CVE-2008-2801, CVE-2008-2802, CVE-2008-2803)\n\nSeveral flaws were found in the processing of malformed HTML content. An\nHTML mail containing malicious content could cause Thunderbird to crash or,\npotentially, execute arbitrary code as the user running Thunderbird.\n(CVE-2008-2785, CVE-2008-2798, CVE-2008-2799, CVE-2008-2811)\n\nSeveral flaws were found in the way malformed HTML content was displayed.\nAn HTML mail containing specially-crafted content could, potentially, trick\na Thunderbird user into surrendering sensitive information. (CVE-2008-2800)\n\nTwo local file disclosure flaws were found in Thunderbird. An HTML mail\ncontaining malicious content could cause Thunderbird to reveal the contents\nof a local file to a remote attacker. (CVE-2008-2805, CVE-2008-2810)\n\nA flaw was found in the way a malformed .properties file was processed by\nThunderbird. A malicious extension could read uninitialized memory,\npossibly leaking sensitive data to the extension. (CVE-2008-2807)\n\nA flaw was found in the way Thunderbird escaped a listing of local file\nnames. If a user could be tricked into listing a local directory containing\nmalicious file names, arbitrary JavaScript could be run with the\npermissions of the user running Thunderbird. (CVE-2008-2808)\n\nA flaw was found in the way Thunderbird displayed information about\nself-signed certificates. It was possible for a self-signed certificate to\ncontain multiple alternate name entries, which were not all displayed to\nthe user, allowing them to mistakenly extend trust to an unknown site.\n(CVE-2008-2809)\n\nNote: JavaScript support is disabled by default in Thunderbird. The above\nissues are not exploitable unless JavaScript is enabled.\n\nAll Thunderbird users should upgrade to these updated packages, which\ncontain backported patches to resolve these issues.", "published": "2008-07-24T00:00:04", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://access.redhat.com/errata/RHSA-2008:0616", "cvelist": ["CVE-2008-2801", "CVE-2008-2785", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2017-06-05T07:53:11"}, {"id": "RHSA-2008:0549", "type": "redhat", "title": "(RHSA-2008:0549) RHSA-2008:0549", "description": "Critical: firefox security update\n\nMozilla Firefox is an open source Web browser.\n\nMultiple flaws were found in the processing of malformed JavaScript\ncontent. A web page containing such malicious content could cause Firefox\nto crash or, potentially, execute arbitrary code as the user running\nFirefox. (CVE-2008-2801, CVE-2008-2802, CVE-2008-2803)\n\nSeveral flaws were found in the processing of malformed web content. A web\npage containing malicious content could cause Firefox to crash or,\npotentially, execute arbitrary code as the user running Firefox.\n(CVE-2008-2798, CVE-2008-2799, CVE-2008-2811)\n\nSeveral flaws were found in the way malformed web content was displayed. A\nweb page containing specially-crafted content could potentially trick a\nFirefox user into surrendering sensitive information. (CVE-2008-2800)\n\nTwo local file disclosure flaws were found in Firefox. A web page\ncontaining malicious content could cause Firefox to reveal the contents of\na local file to a remote attacker. (CVE-2008-2805, CVE-2008-2810)\n\nA flaw was found in the way a malformed .properties file was processed by\nFirefox. A malicious extension could read uninitialized memory, possibly\nleaking sensitive data to the extension. (CVE-2008-2807)\n\nA flaw was found in the way Firefox escaped a listing of local file names.\nIf a user could be tricked into listing a local directory containing\nmalicious file names, arbitrary JavaScript could be run with the\npermissions of the user running Firefox. (CVE-2008-2808)\n\nA flaw was found in the way Firefox displayed information about self-signed\ncertificates. It was possible for a self-signed certificate to contain\nmultiple alternate name entries, which were not all displayed to the user,\nallowing them to mistakenly extend trust to an unknown site.\n(CVE-2008-2809)\n\nAll Mozilla Firefox users should upgrade to this updated package, which\ncontains backported patches that correct these issues.", "published": "2008-07-02T04:00:00", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://access.redhat.com/errata/RHSA-2008:0549", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2017-06-05T07:54:40"}], "nessus": [{"id": "CENTOS_RHSA-2008-0547.NASL", "type": "nessus", "title": "CentOS 3 / 4 : seamonkey (CESA-2008:0547)", "description": "Updated SeaMonkey packages that fix a security issues are now available for Red Hat Enterprise Linux 2.1, Red Hat Enterprise Linux 3 and Red Hat Enterprise Linux 4.\n\nThis update has been rated as having critical security impact by the Red Hat Security Response Team.\n\nSeaMonkey is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor.\n\nMultiple flaws were found in the processing of malformed JavaScript content. A web page containing such malicious content could cause SeaMonkey to crash or, potentially, execute arbitrary code as the user running SeaMonkey. (CVE-2008-2801, CVE-2008-2802, CVE-2008-2803)\n\nSeveral flaws were found in the processing of malformed web content. A web page containing malicious content could cause SeaMonkey to crash or, potentially, execute arbitrary code as the user running SeaMonkey.\n(CVE-2008-2798, CVE-2008-2799, CVE-2008-2811)\n\nSeveral flaws were found in the way malformed web content was displayed. A web page containing specially crafted content could potentially trick a SeaMonkey user into surrendering sensitive information. (CVE-2008-2800)\n\nTwo local file disclosure flaws were found in SeaMonkey. A web page containing malicious content could cause SeaMonkey to reveal the contents of a local file to a remote attacker. (CVE-2008-2805, CVE-2008-2810)\n\nA flaw was found in the way a malformed .properties file was processed by SeaMonkey. A malicious extension could read uninitialized memory, possibly leaking sensitive data to the extension. (CVE-2008-2807)\n\nA flaw was found in the way SeaMonkey escaped a listing of local file names. If a user could be tricked into listing a local directory containing malicious file names, arbitrary JavaScript could be run with the permissions of the user running SeaMonkey. (CVE-2008-2808)\n\nA flaw was found in the way SeaMonkey displayed information about self-signed certificates. It was possible for a self-signed certificate to contain multiple alternate name entries, which were not all displayed to the user, allowing them to mistakenly extend trust to an unknown site. (CVE-2008-2809)\n\nAll SeaMonkey users should upgrade to these updated packages, which contain backported patches to resolve these issues.", "published": "2008-07-08T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=33399", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-11-18T05:27:47"}, {"id": "DEBIAN_DSA-1615.NASL", "type": "nessus", "title": "Debian DSA-1615-1 : xulrunner - several vulnerabilities", "description": "Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications. The Common Vulnerabilities and Exposures project identifies the following problems :\n\n - CVE-2008-2785 It was discovered that missing boundary checks on a reference counter for CSS objects can lead to the execution of arbitrary code.\n\n - CVE-2008-2798 Devon Hubbard, Jesse Ruderman and Martijn Wargers discovered crashes in the layout engine, which might allow the execution of arbitrary code.\n\n - CVE-2008-2799 Igor Bukanov, Jesse Ruderman and Gary Kwong discovered crashes in the JavaScript engine, which might allow the execution of arbitrary code.\n\n - CVE-2008-2800 'moz_bug_r_a4' discovered several cross-site scripting vulnerabilities.\n\n - CVE-2008-2801 Collin Jackson and Adam Barth discovered that JavaScript code could be executed in the context of signed JAR archives.\n\n - CVE-2008-2802 'moz_bug_r_a4' discovered that XUL documents can escalate privileges by accessing the pre-compiled 'fastload' file.\n\n - CVE-2008-2803 'moz_bug_r_a4' discovered that missing input sanitising in the mozIJSSubScriptLoader.loadSubScript() function could lead to the execution of arbitrary code. Iceweasel itself is not affected, but some addons are.\n\n - CVE-2008-2805 Claudio Santambrogio discovered that missing access validation in DOM parsing allows malicious websites to force the browser to upload local files to the server, which could lead to information disclosure.\n\n - CVE-2008-2807 Daniel Glazman discovered that a programming error in the code for parsing .properties files could lead to memory content being exposed to addons, which could lead to information disclosure.\n\n - CVE-2008-2808 Masahiro Yamada discovered that file URLs in directory listings were insufficiently escaped.\n\n - CVE-2008-2809 John G. Myers, Frank Benkstein and Nils Toedtmann discovered that alternate names on self-signed certificates were handled insufficiently, which could lead to spoofing of secure connections.\n\n - CVE-2008-2811 Greg McManus discovered a crash in the block reflow code, which might allow the execution of arbitrary code.\n\n - CVE-2008-2933 Billy Rios discovered that passing an URL containing a pipe symbol to Iceweasel can lead to Chrome privilege escalation.", "published": "2008-07-24T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=33567", "cvelist": ["CVE-2008-2933", "CVE-2008-2801", "CVE-2008-2785", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-12-07T05:37:31"}, {"id": "SL_20080702_FIREFOX_ON_SL_5_2.NASL", "type": "nessus", "title": "Scientific Linux Security Update : firefox on SL 5.2 i386/x86_64", "description": "Multiple flaws were found in the processing of malformed JavaScript content. A web page containing such malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox. (CVE-2008-2801, CVE-2008-2802, CVE-2008-2803)\n\nSeveral flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox.\n(CVE-2008-2798, CVE-2008-2799, CVE-2008-2811)\n\nSeveral flaws were found in the way malformed web content was displayed. A web page containing specially crafted content could potentially trick a Firefox user into surrendering sensitive information. (CVE-2008-2800)\n\nTwo local file disclosure flaws were found in Firefox. A web page containing malicious content could cause Firefox to reveal the contents of a local file to a remote attacker. (CVE-2008-2805, CVE-2008-2810)\n\nA flaw was found in the way a malformed .properties file was processed by Firefox. A malicious extension could read uninitialized memory, possibly leaking sensitive data to the extension. (CVE-2008-2807)\n\nA flaw was found in the way Firefox escaped a listing of local file names. If a user could be tricked into listing a local directory containing malicious file names, arbitrary JavaScript could be run with the permissions of the user running Firefox. (CVE-2008-2808)\n\nA flaw was found in the way Firefox displayed information about self-signed certificates. It was possible for a self-signed certificate to contain multiple alternate name entries, which were not all displayed to the user, allowing them to mistakenly extend trust to an unknown site. (CVE-2008-2809)", "published": "2012-08-01T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=60434", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-12-15T10:12:57"}, {"id": "SL_20080702_FIREFOX_ON_SL4_X.NASL", "type": "nessus", "title": "Scientific Linux Security Update : firefox on SL4.x i386/x86_64", "description": "Multiple flaws were found in the processing of malformed JavaScript content. A web page containing such malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox. (CVE-2008-2801, CVE-2008-2802, CVE-2008-2803)\n\nSeveral flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox.\n(CVE-2008-2798, CVE-2008-2799, CVE-2008-2811)\n\nSeveral flaws were found in the way malformed web content was displayed. A web page containing specially crafted content could potentially trick a Firefox user into surrendering sensitive information. (CVE-2008-2800)\n\nTwo local file disclosure flaws were found in Firefox. A web page containing malicious content could cause Firefox to reveal the contents of a local file to a remote attacker. (CVE-2008-2805, CVE-2008-2810)\n\nA flaw was found in the way a malformed .properties file was processed by Firefox. A malicious extension could read uninitialized memory, possibly leaking sensitive data to the extension. (CVE-2008-2807)\n\nA flaw was found in the way Firefox escaped a listing of local file names. If a user could be tricked into listing a local directory containing malicious file names, arbitrary JavaScript could be run with the permissions of the user running Firefox. (CVE-2008-2808)\n\nA flaw was found in the way Firefox displayed information about self-signed certificates. It was possible for a self-signed certificate to contain multiple alternate name entries, which were not all displayed to the user, allowing them to mistakenly extend trust to an unknown site. (CVE-2008-2809)", "published": "2012-08-01T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=60433", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-12-15T10:16:01"}, {"id": "MOZILLA_FIREFOX_20015.NASL", "type": "nessus", "title": "Firefox < 2.0.0.15 Multiple Vulnerabilities", "description": "The installed version of Firefox is affected by various security issues :\n\n - Several stability bugs leading to crashes which, in some cases, show traces of memory corruption (MFSA 2008-21).\n\n - A vulnerability involving violation of the same-origin policy could allow for cross-site scripting attacks (MFSA 2008-22).\n\n - JavaScript can be injected into the context of signed JARs and executed under the context of the JAR's signer (MFSA 2008-23).\n\n - By taking advantage of the privilege level stored in the pre-compiled 'fastload' file, an attacker may be able to run arbitrary JavaScript code with chrome privileges (MFSA 2008-24).\n\n - Arbitrary code execution is possible in 'mozIJSSubScriptLoader.loadSubScript()' (MFSA 2008-25).\n\n - An attacker can steal files from known locations on a victim's computer via originalTarget and DOM Range (MFSA 2008-27).\n\n - It is possible for a malicious Java applet to bypass the same-origin policy and create arbitrary socket connections to other domains (MFSA 2008-28).\n\n - An improperly encoded '.properties' file in an add-on can result in uninitialized memory being used, which could lead to data formerly used by other programs being exposed to the add-on code (MFSA 2008-29).\n\n - File URLs in directory listings are not properly HTML- escaped when the filenames contained particular characters (MFSA 2008-30).\n\n - A weakness in the trust model regarding alt names on peer-trusted certs could lead to spoofing secure connections to any other site (MFSA 2008-31).\n\n - URL shortcut files on Windows (for example, saved IE favorites) could be interpreted as if they were in the local file context when opened by Firefox, although the referenced remote content would be downloaded and displayed (MFSA 2008-32).\n\n - A crash in Mozilla's block reflow code could be used by an attacker to crash the browser and run arbitrary code on the victim's computer (MFSA 2008-33).", "published": "2008-07-02T00:00:00", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=33393", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798", "CVE-2008-2806"], "lastseen": "2017-06-07T03:42:21"}, {"id": "SL_20080702_SEAMONKEY_ON_SL3_X.NASL", "type": "nessus", "title": "Scientific Linux Security Update : seamonkey on SL3.x, SL4.x i386/x86_64", "description": "Multiple flaws were found in the processing of malformed JavaScript content. A web page containing such malicious content could cause SeaMonkey to crash or, potentially, execute arbitrary code as the user running SeaMonkey. (CVE-2008-2801, CVE-2008-2802, CVE-2008-2803)\n\nSeveral flaws were found in the processing of malformed web content. A web page containing malicious content could cause SeaMonkey to crash or, potentially, execute arbitrary code as the user running SeaMonkey.\n(CVE-2008-2798, CVE-2008-2799, CVE-2008-2811)\n\nSeveral flaws were found in the way malformed web content was displayed. A web page containing specially crafted content could potentially trick a SeaMonkey user into surrendering sensitive information. (CVE-2008-2800)\n\nTwo local file disclosure flaws were found in SeaMonkey. A web page containing malicious content could cause SeaMonkey to reveal the contents of a local file to a remote attacker. (CVE-2008-2805, CVE-2008-2810)\n\nA flaw was found in the way a malformed .properties file was processed by SeaMonkey. A malicious extension could read uninitialized memory, possibly leaking sensitive data to the extension. (CVE-2008-2807)\n\nA flaw was found in the way SeaMonkey escaped a listing of local file names. If a user could be tricked into listing a local directory containing malicious file names, arbitrary JavaScript could be run with the permissions of the user running SeaMonkey. (CVE-2008-2808)\n\nA flaw was found in the way SeaMonkey displayed information about self-signed certificates. It was possible for a self-signed certificate to contain multiple alternate name entries, which were not all displayed to the user, allowing them to mistakenly extend trust to an unknown site. (CVE-2008-2809)", "published": "2012-08-01T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=60435", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-12-15T10:14:46"}, {"id": "DEBIAN_DSA-1607.NASL", "type": "nessus", "title": "Debian DSA-1607-1 : iceweasel - several vulnerabilities", "description": "Several remote vulnerabilities have been discovered in the Iceweasel webbrowser, an unbranded version of the Firefox browser. The Common Vulnerabilities and Exposures project identifies the following problems :\n\n - CVE-2008-2798 Devon Hubbard, Jesse Ruderman and Martijn Wargers discovered crashes in the layout engine, which might allow the execution of arbitrary code.\n\n - CVE-2008-2799 Igor Bukanov, Jesse Ruderman and Gary Kwong discovered crashes in the JavaScript engine, which might allow the execution of arbitrary code.\n\n - CVE-2008-2800 'moz_bug_r_a4' discovered several cross-site scripting vulnerabilities.\n\n - CVE-2008-2801 Collin Jackson and Adam Barth discovered that JavaScript code could be executed in the context of signed JAR archives.\n\n - CVE-2008-2802 'moz_bug_r_a4' discovered that XUL documents can escalate privileges by accessing the pre-compiled 'fastload' file.\n\n - CVE-2008-2803 'moz_bug_r_a4' discovered that missing input sanitising in the mozIJSSubScriptLoader.loadSubScript() function could lead to the execution of arbitrary code. Iceweasel itself is not affected, but some addons are.\n\n - CVE-2008-2805 Claudio Santambrogio discovered that missing access validation in DOM parsing allows malicious websites to force the browser to upload local files to the server, which could lead to information disclosure.\n\n - CVE-2008-2807 Daniel Glazman discovered that a programming error in the code for parsing .properties files could lead to memory content being exposed to addons, which could lead to information disclosure.\n\n - CVE-2008-2808 Masahiro Yamada discovered that file URLS in directory listings were insufficiently escaped.\n\n - CVE-2008-2809 John G. Myers, Frank Benkstein and Nils Toedtmann discovered that alternate names on self-signed certificates were handled insufficiently, which could lead to spoofings secure connections.\n\n - CVE-2008-2811 Greg McManus discovered a crash in the block reflow code, which might allow the execution of arbitrary code.", "published": "2008-07-15T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=33491", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-12-07T05:35:07"}, {"id": "REDHAT-RHSA-2008-0549.NASL", "type": "nessus", "title": "RHEL 4 : firefox (RHSA-2008:0549)", "description": "An updated firefox package that fixes several security issues is now available for Red Hat Enterprise Linux 4.\n\nThis update has been rated as having critical security impact by the Red Hat Security Response Team.\n\nMozilla Firefox is an open source Web browser.\n\nMultiple flaws were found in the processing of malformed JavaScript content. A web page containing such malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox. (CVE-2008-2801, CVE-2008-2802, CVE-2008-2803)\n\nSeveral flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox.\n(CVE-2008-2798, CVE-2008-2799, CVE-2008-2811)\n\nSeveral flaws were found in the way malformed web content was displayed. A web page containing specially crafted content could potentially trick a Firefox user into surrendering sensitive information. (CVE-2008-2800)\n\nTwo local file disclosure flaws were found in Firefox. A web page containing malicious content could cause Firefox to reveal the contents of a local file to a remote attacker. (CVE-2008-2805, CVE-2008-2810)\n\nA flaw was found in the way a malformed .properties file was processed by Firefox. A malicious extension could read uninitialized memory, possibly leaking sensitive data to the extension. (CVE-2008-2807)\n\nA flaw was found in the way Firefox escaped a listing of local file names. If a user could be tricked into listing a local directory containing malicious file names, arbitrary JavaScript could be run with the permissions of the user running Firefox. (CVE-2008-2808)\n\nA flaw was found in the way Firefox displayed information about self-signed certificates. It was possible for a self-signed certificate to contain multiple alternate name entries, which were not all displayed to the user, allowing them to mistakenly extend trust to an unknown site. (CVE-2008-2809)\n\nAll Mozilla Firefox users should upgrade to this updated package, which contains backported patches that correct these issues.", "published": "2008-07-08T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=33424", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2017-01-04T06:12:12"}, {"id": "FEDORA_2008-6196.NASL", "type": "nessus", "title": "Fedora 8 : seamonkey-1.1.10-1.fc8 (2008-6196)", "description": "Updated seamonkey packages that fix several security issues are now available for Fedora 8. SeaMonkey is an all-in-one Internet application suite. It includes a browser, mail/news client, IRC client, JavaScript debugger, and a tool to inspect the DOM for web pages. It is derived from the application formerly known as Mozilla Application Suite. Multiple flaws were found in the processing of malformed JavaScript content. A web page containing such malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox. (CVE-2008-2801, CVE-2008-2802, CVE-2008-2803) Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox. (CVE-2008-2798, CVE-2008-2799, CVE-2008-2811) Several flaws were found in the way malformed web content was displayed. A web page containing specially crafted content could potentially trick a Firefox user into surrendering sensitive information. (CVE-2008-2800) Two local file disclosure flaws were found in Firefox. A web page containing malicious content could cause Firefox to reveal the contents of a local file to a remote attacker. (CVE-2008-2805, CVE-2008-2810) A flaw was found in the way a malformed .properties file was processed by Firefox. A malicious extension could read uninitialized memory, possibly leaking sensitive data to the extension. (CVE-2008-2807) A flaw was found in the way Firefox escaped a listing of local file names. If a user could be tricked into listing a local directory containing malicious file names, arbitrary JavaScript could be run with the permissions of the user running Firefox. (CVE-2008-2808) A flaw was found in the way Firefox displayed information about self-signed certificates. It was possible for a self-signed certificate to contain multiple alternate name entries, which were not all displayed to the user, allowing them to mistakenly extend trust to an unknown site. (CVE-2008-2809) Updated packages update SeaMonkey to upstream version 1.1.10 to address these flaws:\nhttp://www.mozilla.org/projects/security/known- vulnerabilities.html#seamonkey1.1.10\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2008-07-10T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=33455", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798", "CVE-2008-2806"], "lastseen": "2016-12-09T05:34:58"}, {"id": "FEDORA_2008-6127.NASL", "type": "nessus", "title": "Fedora 8 : Miro-1.2.3-2.fc8 / blam-1.8.3-16.fc8 / chmsee-1.0.0-2.31.fc8 / devhelp-0.16.1-8.fc8 / etc (2008-6127)", "description": "Updated firefox packages that fix several security issues are now available for Fedora 8. This update has been rated as having critical security impact by the Fedora Security Response Team. Multiple flaws were found in the processing of malformed JavaScript content. A web page containing such malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox.\n(CVE-2008-2801, CVE-2008-2802, CVE-2008-2803) Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox. (CVE-2008-2798, CVE-2008-2799, CVE-2008-2811) Several flaws were found in the way malformed web content was displayed. A web page containing specially crafted content could potentially trick a Firefox user into surrendering sensitive information. (CVE-2008-2800) Two local file disclosure flaws were found in Firefox. A web page containing malicious content could cause Firefox to reveal the contents of a local file to a remote attacker. (CVE-2008-2805, CVE-2008-2810) A flaw was found in the way a malformed .properties file was processed by Firefox. A malicious extension could read uninitialized memory, possibly leaking sensitive data to the extension. (CVE-2008-2807) A flaw was found in the way Firefox escaped a listing of local file names. If a user could be tricked into listing a local directory containing malicious file names, arbitrary JavaScript could be run with the permissions of the user running Firefox. (CVE-2008-2808) A flaw was found in the way Firefox displayed information about self-signed certificates. It was possible for a self-signed certificate to contain multiple alternate name entries, which were not all displayed to the user, allowing them to mistakenly extend trust to an unknown site. (CVE-2008-2809) Updated packages update Mozilla Firefox to upstream version 2.0.0.15 to address these flaws:\nhttp://www.mozilla.org/projects/security/known- vulnerabilities.html#firefox2.0.0.15 This update also contains blam, chmsee, devhelp, epiphany, epiphany-extensions, galeon, gnome-python2-extras, gnome-web- photo, gtkmozembedmm, kazehakase, liferea, Miro, openvrml, ruby-gnome2 and yelp packages rebuilt against new Firefox / Gecko libraries.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2008-07-08T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=33416", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-12-09T05:34:14"}], "oraclelinux": [{"id": "ELSA-2008-0549", "type": "oraclelinux", "title": "firefox security update", "description": "[1.5.0.12-0.19.0.1.el4]\n- Add firefox-oracle-default-bookmarks.html and firefox-oracle-default-prefs.js\n[1.5.0.12-0.19.el4]\n- Respun for mozilla bugs #439035,#439735,#440308\n[1.5.0.12-0.18.el4]\n- Update patchset to fix regression as per 1.8.1.15", "published": "2008-07-02T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://linux.oracle.com/errata/ELSA-2008-0549.html", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-09-04T11:16:00"}, {"id": "ELSA-2008-0569", "type": "oraclelinux", "title": "firefox security update", "description": "devhelp:\n[0.12-17]\n- Rebuild against xulrunner\nfirefox:\n[3.0-2.0.1.el5]\n- Replaced the RedHat prefs and bookmarks with Oracle prefs and bookmarks\n- Add patch oracle-firefox-branding.patch\n[3.0-2]\n- Fixed firstrun homepage issue\n[3.0-1]\n- Update to Firefox 3 Final\nxulrunner:\n[1.9-1.0.1.el5]\n- Added xulrunner-oracle-default-prefs.js\n[1.9-1]\n- Update to 1.9 final\nyelp:\n[2.16.0-19]\n- rebuild against xulrunner", "published": "2008-07-02T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://linux.oracle.com/errata/ELSA-2008-0569.html", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-09-04T11:16:11"}, {"id": "ELSA-2008-0616", "type": "oraclelinux", "title": "thunderbird security update", "description": "[1.5.0.12-14.0.1]\r\n- Add thunderbird-oracle-default-prefs.js for errata rebuild\r\n \n[1.5.0.12-13]\r\n- Respun for mozilla bugs #439035,#439735,#440308\r\n \n[1.5.0.12-12]\r\n- Update patchset to fix regression as per 1.8.1.15", "published": "2008-07-24T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://linux.oracle.com/errata/ELSA-2008-0616.html", "cvelist": ["CVE-2008-2801", "CVE-2008-2785", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-09-04T11:17:00"}], "debian": [{"id": "DSA-1607", "type": "debian", "title": "iceweasel -- several vulnerabilities", "description": "Several remote vulnerabilities have been discovered in the Iceweasel webbrowser, an unbranded version of the Firefox browser. The Common Vulnerabilities and Exposures project identifies the following problems:\n\n * [CVE-2008-2798](<https://security-tracker.debian.org/tracker/CVE-2008-2798>)\n\nDevon Hubbard, Jesse Ruderman and Martijn Wargers discovered crashes in the layout engine, which might allow the execution of arbitrary code.\n\n * [CVE-2008-2799](<https://security-tracker.debian.org/tracker/CVE-2008-2799>)\n\nIgor Bukanov, Jesse Ruderman and Gary Kwong discovered crashes in the Javascript engine, which might allow the execution of arbitrary code.\n\n * [CVE-2008-2800](<https://security-tracker.debian.org/tracker/CVE-2008-2800>)\n\n\"moz_bug_r_a4\" discovered several cross-site scripting vulnerabilities.\n\n * [CVE-2008-2801](<https://security-tracker.debian.org/tracker/CVE-2008-2801>)\n\nCollin Jackson and Adam Barth discovered that Javascript code could be executed in the context of signed JAR archives.\n\n * [CVE-2008-2802](<https://security-tracker.debian.org/tracker/CVE-2008-2802>)\n\n\"moz_bug_r_a4\" discovered that XUL documents can escalate privileges by accessing the pre-compiled \"fastload\" file.\n\n * [CVE-2008-2803](<https://security-tracker.debian.org/tracker/CVE-2008-2803>)\n\n\"moz_bug_r_a4\" discovered that missing input sanitising in the mozIJSSubScriptLoader.loadSubScript() function could lead to the execution of arbitrary code. Iceweasel itself is not affected, but some addons are.\n\n * [CVE-2008-2805](<https://security-tracker.debian.org/tracker/CVE-2008-2805>)\n\nClaudio Santambrogio discovered that missing access validation in DOM parsing allows malicious web sites to force the browser to upload local files to the server, which could lead to information disclosure.\n\n * [CVE-2008-2807](<https://security-tracker.debian.org/tracker/CVE-2008-2807>)\n\nDaniel Glazman discovered that a programming error in the code for parsing .properties files could lead to memory content being exposed to addons, which could lead to information disclosure.\n\n * [CVE-2008-2808](<https://security-tracker.debian.org/tracker/CVE-2008-2808>)\n\nMasahiro Yamada discovered that file URLS in directory listings were insufficiently escaped.\n\n * [CVE-2008-2809](<https://security-tracker.debian.org/tracker/CVE-2008-2809>)\n\nJohn G. Myers, Frank Benkstein and Nils Toedtmann discovered that alternate names on self-signed certificates were handled insufficiently, which could lead to spoofings secure connections.\n\n * [CVE-2008-2811](<https://security-tracker.debian.org/tracker/CVE-2008-2811>)\n\nGreg McManus discovered a crash in the block reflow code, which might allow the execution of arbitrary code.\n\nFor the stable distribution (etch), these problems have been fixed in version 2.0.0.15-0etch1.\n\nIceweasel from the unstable distribution (sid) links dynamically against the xulrunner library.\n\nWe recommend that you upgrade your iceweasel package.", "published": "2008-07-11T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://www.debian.org/security/dsa-1607", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-09-02T18:26:55"}, {"id": "DSA-1615", "type": "debian", "title": "xulrunner -- several vulnerabilities", "description": "Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications. The Common Vulnerabilities and Exposures project identifies the following problems:\n\n * [CVE-2008-2785](<https://security-tracker.debian.org/tracker/CVE-2008-2785>)\n\nIt was discovered that missing boundary checks on a reference counter for CSS objects can lead to the execution of arbitrary code.\n\n * [CVE-2008-2798](<https://security-tracker.debian.org/tracker/CVE-2008-2798>)\n\nDevon Hubbard, Jesse Ruderman and Martijn Wargers discovered crashes in the layout engine, which might allow the execution of arbitrary code.\n\n * [CVE-2008-2799](<https://security-tracker.debian.org/tracker/CVE-2008-2799>)\n\nIgor Bukanov, Jesse Ruderman and Gary Kwong discovered crashes in the Javascript engine, which might allow the execution of arbitrary code.\n\n * [CVE-2008-2800](<https://security-tracker.debian.org/tracker/CVE-2008-2800>)\n\nmoz_bug_r_a4 discovered several cross-site scripting vulnerabilities.\n\n * [CVE-2008-2801](<https://security-tracker.debian.org/tracker/CVE-2008-2801>)\n\nCollin Jackson and Adam Barth discovered that Javascript code could be executed in the context of signed JAR archives.\n\n * [CVE-2008-2802](<https://security-tracker.debian.org/tracker/CVE-2008-2802>)\n\nmoz_bug_r_a4 discovered that XUL documents can escalate privileges by accessing the pre-compiled fastload file.\n\n * [CVE-2008-2803](<https://security-tracker.debian.org/tracker/CVE-2008-2803>)\n\nmoz_bug_r_a4 discovered that missing input sanitising in the mozIJSSubScriptLoader.loadSubScript() function could lead to the execution of arbitrary code. Iceweasel itself is not affected, but some addons are.\n\n * [CVE-2008-2805](<https://security-tracker.debian.org/tracker/CVE-2008-2805>)\n\nClaudio Santambrogio discovered that missing access validation in DOM parsing allows malicious web sites to force the browser to upload local files to the server, which could lead to information disclosure.\n\n * [CVE-2008-2807](<https://security-tracker.debian.org/tracker/CVE-2008-2807>)\n\nDaniel Glazman discovered that a programming error in the code for parsing .properties files could lead to memory content being exposed to addons, which could lead to information disclosure.\n\n * [CVE-2008-2808](<https://security-tracker.debian.org/tracker/CVE-2008-2808>)\n\nMasahiro Yamada discovered that file URLs in directory listings were insufficiently escaped.\n\n * [CVE-2008-2809](<https://security-tracker.debian.org/tracker/CVE-2008-2809>)\n\nJohn G. Myers, Frank Benkstein and Nils Toedtmann discovered that alternate names on self-signed certificates were handled insufficiently, which could lead to spoofing of secure connections.\n\n * [CVE-2008-2811](<https://security-tracker.debian.org/tracker/CVE-2008-2811>)\n\nGreg McManus discovered a crash in the block reflow code, which might allow the execution of arbitrary code.\n\n * [CVE-2008-2933](<https://security-tracker.debian.org/tracker/CVE-2008-2933>)\n\nBilly Rios discovered that passing an URL containing a pipe symbol to Iceweasel can lead to Chrome privilege escalation.\n\nFor the stable distribution (etch), these problems have been fixed in version 1.8.0.15~pre080614d-0etch1.\n\nFor the unstable distribution (sid), these problems have been fixed in version 1.9.0.1-1.\n\nWe recommend that you upgrade your xulrunner packages.", "published": "2008-07-23T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://www.debian.org/security/dsa-1615", "cvelist": ["CVE-2008-2933", "CVE-2008-2801", "CVE-2008-2785", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-09-02T18:32:57"}, {"id": "DSA-1697", "type": "debian", "title": "iceape -- several vulnerabilities", "description": "Several remote vulnerabilities have been discovered in Iceape an unbranded version of the Seamonkey internet suite. The Common Vulnerabilities and Exposures project identifies the following problems:\n\n * [CVE-2008-0016](<https://security-tracker.debian.org/tracker/CVE-2008-0016>)\n\nJustin Schuh, Tom Cross and Peter Williams discovered a buffer overflow in the parser for UTF-8 URLs, which may lead to the execution of arbitrary code. (MFSA 2008-37)\n\n * [CVE-2008-0304](<https://security-tracker.debian.org/tracker/CVE-2008-0304>)\n\nIt was discovered that a buffer overflow in MIME decoding can lead to the execution of arbitrary code. (MFSA 2008-26)\n\n * [CVE-2008-2785](<https://security-tracker.debian.org/tracker/CVE-2008-2785>)\n\nIt was discovered that missing boundary checks on a reference counter for CSS objects can lead to the execution of arbitrary code. (MFSA 2008-34)\n\n * [CVE-2008-2798](<https://security-tracker.debian.org/tracker/CVE-2008-2798>)\n\nDevon Hubbard, Jesse Ruderman and Martijn Wargers discovered crashes in the layout engine, which might allow the execution of arbitrary code. (MFSA 2008-21)\n\n * [CVE-2008-2799](<https://security-tracker.debian.org/tracker/CVE-2008-2799>)\n\nIgor Bukanov, Jesse Ruderman and Gary Kwong discovered crashes in the Javascript engine, which might allow the execution of arbitrary code. (MFSA 2008-21)\n\n * [CVE-2008-2800](<https://security-tracker.debian.org/tracker/CVE-2008-2800>)\n\n\"moz_bug_r_a4\" discovered several cross-site scripting vulnerabilities. (MFSA 2008-22)\n\n * [CVE-2008-2801](<https://security-tracker.debian.org/tracker/CVE-2008-2801>)\n\nCollin Jackson and Adam Barth discovered that Javascript code could be executed in the context or signed JAR archives. (MFSA 2008-23)\n\n * [CVE-2008-2802](<https://security-tracker.debian.org/tracker/CVE-2008-2802>)\n\n\"moz_bug_r_a4\" discovered that XUL documements can escalate privileges by accessing the pre-compiled \"fastload\" file. (MFSA 2008-24)\n\n * [CVE-2008-2803](<https://security-tracker.debian.org/tracker/CVE-2008-2803>)\n\n\"moz_bug_r_a4\" discovered that missing input sanitising in the mozIJSSubScriptLoader.loadSubScript() function could lead to the execution of arbitrary code. Iceape itself is not affected, but some addons are. (MFSA 2008-25)\n\n * [CVE-2008-2805](<https://security-tracker.debian.org/tracker/CVE-2008-2805>)\n\nClaudio Santambrogio discovered that missing access validation in DOM parsing allows malicious web sites to force the browser to upload local files to the server, which could lead to information disclosure. (MFSA 2008-27)\n\n * [CVE-2008-2807](<https://security-tracker.debian.org/tracker/CVE-2008-2807>)\n\nDaniel Glazman discovered that a programming error in the code for parsing .properties files could lead to memory content being exposed to addons, which could lead to information disclosure. (MFSA 2008-29)\n\n * [CVE-2008-2808](<https://security-tracker.debian.org/tracker/CVE-2008-2808>)\n\nMasahiro Yamada discovered that file URLs in directory listings were insufficiently escaped. (MFSA 2008-30)\n\n * [CVE-2008-2809](<https://security-tracker.debian.org/tracker/CVE-2008-2809>)\n\nJohn G. Myers, Frank Benkstein and Nils Toedtmann discovered that alternate names on self-signed certificates were handled insufficiently, which could lead to spoofings of secure connections. (MFSA 2008-31)\n\n * [CVE-2008-2810](<https://security-tracker.debian.org/tracker/CVE-2008-2810>)\n\nIt was discovered that URL shortcut files could be used to bypass the same-origin restrictions. This issue does not affect current Iceape, but might occur with additional extensions installed. (MFSA 2008-32)\n\n * [CVE-2008-2811](<https://security-tracker.debian.org/tracker/CVE-2008-2811>)\n\nGreg McManus discovered a crash in the block reflow code, which might allow the execution of arbitrary code. (MFSA 2008-33)\n\n * [CVE-2008-2933](<https://security-tracker.debian.org/tracker/CVE-2008-2933>)\n\nBilly Rios discovered that passing an URL containing a pipe symbol to Iceape can lead to Chrome privilege escalation. (MFSA 2008-35)\n\n * [CVE-2008-3835](<https://security-tracker.debian.org/tracker/CVE-2008-3835>)\n\n\"moz_bug_r_a4\" discovered that the same-origin check in nsXMLDocument::OnChannelRedirect() could be bypassed. (MFSA 2008-38)\n\n * [CVE-2008-3836](<https://security-tracker.debian.org/tracker/CVE-2008-3836>)\n\n\"moz_bug_r_a4\" discovered that several vulnerabilities in feedWriter could lead to Chrome privilege escalation. (MFSA 2008-39)\n\n * [CVE-2008-3837](<https://security-tracker.debian.org/tracker/CVE-2008-3837>)\n\nPaul Nickerson discovered that an attacker could move windows during a mouse click, resulting in unwanted action triggered by drag-and-drop. (MFSA 2008-40)\n\n * [CVE-2008-4058](<https://security-tracker.debian.org/tracker/CVE-2008-4058>)\n\n\"moz_bug_r_a4\" discovered a vulnerability which can result in Chrome privilege escalation through XPCNativeWrappers. (MFSA 2008-41)\n\n * [CVE-2008-4059](<https://security-tracker.debian.org/tracker/CVE-2008-4059>)\n\n\"moz_bug_r_a4\" discovered a vulnerability which can result in Chrome privilege escalation through XPCNativeWrappers. (MFSA 2008-41)\n\n * [CVE-2008-4060](<https://security-tracker.debian.org/tracker/CVE-2008-4060>)\n\nOlli Pettay and \"moz_bug_r_a4\" discovered a Chrome privilege escalation vulnerability in XSLT handling. (MFSA 2008-41)\n\n * [CVE-2008-4061](<https://security-tracker.debian.org/tracker/CVE-2008-4061>)\n\nJesse Ruderman discovered a crash in the layout engine, which might allow the execution of arbitrary code. (MFSA 2008-42)\n\n * [CVE-2008-4062](<https://security-tracker.debian.org/tracker/CVE-2008-4062>)\n\nIgor Bukanov, Philip Taylor, Georgi Guninski and Antoine Labour discovered crashes in the Javascript engine, which might allow the execution of arbitrary code. (MFSA 2008-42)\n\n * [CVE-2008-4065](<https://security-tracker.debian.org/tracker/CVE-2008-4065>)\n\nDave Reed discovered that some Unicode byte order marks are stripped from Javascript code before execution, which can result in code being executed, which were otherwise part of a quoted string. (MFSA 2008-43)\n\n * [CVE-2008-4067](<https://security-tracker.debian.org/tracker/CVE-2008-4067>)\n\nBoris Zbarsky discovered that resource: URLs allow directory traversal when using URL-encoded slashes. (MFSA 2008-44)\n\n * [CVE-2008-4068](<https://security-tracker.debian.org/tracker/CVE-2008-4068>)\n\nGeorgi Guninski discovered that resource: URLs could bypass local access restrictions. (MFSA 2008-44)\n\n * [CVE-2008-4069](<https://security-tracker.debian.org/tracker/CVE-2008-4069>)\n\nBilly Hoffman discovered that the XBM decoder could reveal uninitialised memory. (MFSA 2008-45)\n\n * [CVE-2008-4070](<https://security-tracker.debian.org/tracker/CVE-2008-4070>)\n\nIt was discovered that a buffer overflow could be triggered via a long header in a news article, which could lead to arbitrary code execution. (MFSA 2008-46)\n\n * [CVE-2008-5012](<https://security-tracker.debian.org/tracker/CVE-2008-5012>)\n\nGeorgi Guninski, Michal Zalewski and Chris Evan discovered that the canvas element could be used to bypass same-origin restrictions. (MFSA 2008-48)\n\n * [CVE-2008-5013](<https://security-tracker.debian.org/tracker/CVE-2008-5013>)\n\nIt was discovered that insufficient checks in the Flash plugin glue code could lead to arbitrary code execution. (MFSA 2008-49)\n\n * [CVE-2008-5014](<https://security-tracker.debian.org/tracker/CVE-2008-5014>)\n\nJesse Ruderman discovered that a programming error in the window.__proto__.__proto__ object could lead to arbitrary code execution. (MFSA 2008-50)\n\n * [CVE-2008-5017](<https://security-tracker.debian.org/tracker/CVE-2008-5017>)\n\nIt was discovered that crashes in the layout engine could lead to arbitrary code execution. (MFSA 2008-52)\n\n * [CVE-2008-0017](<https://security-tracker.debian.org/tracker/CVE-2008-0017>)\n\nJustin Schuh discovered that a buffer overflow in http-index-format parser could lead to arbitrary code execution. (MFSA 2008-54)\n\n * [CVE-2008-5021](<https://security-tracker.debian.org/tracker/CVE-2008-5021>)\n\nIt was discovered that a crash in the nsFrameManager might lead to the execution of arbitrary code. (MFSA 2008-55)\n\n * [CVE-2008-5022](<https://security-tracker.debian.org/tracker/CVE-2008-5022>)\n\n\"moz_bug_r_a4\" discovered that the same-origin check in nsXMLHttpRequest::NotifyEventListeners() could be bypassed. (MFSA 2008-56)\n\n * [CVE-2008-5024](<https://security-tracker.debian.org/tracker/CVE-2008-5024>)\n\nChris Evans discovered that quote characters were improperly escaped in the default namespace of E4X documents. (MFSA 2008-58)\n\n * [CVE-2008-4582](<https://security-tracker.debian.org/tracker/CVE-2008-4582>)\n\nLiu Die Yu discovered an information leak through local shortcut files. (MFSA 2008-59)\n\n * [CVE-2008-5500](<https://security-tracker.debian.org/tracker/CVE-2008-5500>)\n\nJesse Ruderman discovered that the layout engine is vulnerable to DoS attacks that might trigger memory corruption and an integer overflow. (MFSA 2008-60)\n\n * [CVE-2008-5503](<https://security-tracker.debian.org/tracker/CVE-2008-5503>)\n\nBoris Zbarsky discovered that an information disclosure attack could be performed via XBL bindings. (MFSA 2008-61)\n\n * [CVE-2008-5506](<https://security-tracker.debian.org/tracker/CVE-2008-5506>)\n\nMarius Schilder discovered that it is possible to obtain sensible data via a XMLHttpRequest. (MFSA 2008-64)\n\n * [CVE-2008-5507](<https://security-tracker.debian.org/tracker/CVE-2008-5507>)\n\nChris Evans discovered that it is possible to obtain sensible data via a JavaScript URL. (MFSA 2008-65)\n\n * [CVE-2008-5508](<https://security-tracker.debian.org/tracker/CVE-2008-5508>)\n\nChip Salzenberg discovered possible phishing attacks via URLs with leading whitespaces or control characters. (MFSA 2008-66)\n\n * [CVE-2008-5511](<https://security-tracker.debian.org/tracker/CVE-2008-5511>)\n\nIt was discovered that it is possible to perform cross-site scripting attacks via an XBL binding to an \"unloaded document.\" (MFSA 2008-68)\n\n * [CVE-2008-5512](<https://security-tracker.debian.org/tracker/CVE-2008-5512>)\n\nIt was discovered that it is possible to run arbitrary JavaScript with chrome privileges via unknown vectors. (MFSA 2008-68)\n\nFor the stable distribution (etch) these problems have been fixed in version 1.0.13~pre080614i-0etch1.\n\nFor the upcoming stable distribution (lenny) these problems will be fixed soon.\n\nFor the unstable (sid) distribution these problems have been fixed in version 1.1.14-1.\n\nWe recommend that you upgrade your iceape packages.", "published": "2009-01-07T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://www.debian.org/security/dsa-1697", "cvelist": ["CVE-2008-2933", "CVE-2008-2801", "CVE-2008-3835", "CVE-2008-2785", "CVE-2008-2799", "CVE-2008-5500", "CVE-2008-4070", "CVE-2008-4067", "CVE-2008-5012", "CVE-2008-5013", "CVE-2008-3836", "CVE-2008-4069", "CVE-2008-0016", "CVE-2008-2803", "CVE-2008-4059", "CVE-2008-0304", "CVE-2008-2807", "CVE-2008-3837", "CVE-2008-5021", "CVE-2008-5017", "CVE-2008-4062", "CVE-2008-4060", "CVE-2008-5014", "CVE-2008-4058", "CVE-2008-5022", "CVE-2008-5512", "CVE-2008-4068", "CVE-2008-5503", "CVE-2008-2810", "CVE-2008-5511", "CVE-2008-2805", "CVE-2008-5508", "CVE-2008-4061", "CVE-2008-2808", "CVE-2008-0017", "CVE-2008-5024", "CVE-2008-5507", "CVE-2008-4065", "CVE-2008-2800", "CVE-2008-4582", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-5506", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-09-02T18:26:41"}, {"id": "DSA-1621", "type": "debian", "title": "icedove -- several vulnerabilities", "description": "Several remote vulnerabilities have been discovered in the Icedove mail client, an unbranded version of the Thunderbird client. The Common Vulnerabilities and Exposures project identifies the following problems: \n\n * [CVE-2008-0304](<https://security-tracker.debian.org/tracker/CVE-2008-0304>)\n\nIt was discovered that a buffer overflow in MIME decoding can lead to the execution of arbitrary code. \n\n * [CVE-2008-2785](<https://security-tracker.debian.org/tracker/CVE-2008-2785>)\n\nIt was discovered that missing boundary checks on a reference counter for CSS objects can lead to the execution of arbitrary code. \n\n * [CVE-2008-2798](<https://security-tracker.debian.org/tracker/CVE-2008-2798>)\n\nDevon Hubbard, Jesse Ruderman and Martijn Wargers discovered crashes in the layout engine, which might allow the execution of arbitrary code. \n\n * [CVE-2008-2799](<https://security-tracker.debian.org/tracker/CVE-2008-2799>)\n\nIgor Bukanov, Jesse Ruderman and Gary Kwong discovered crashes in the Javascript engine, which might allow the execution of arbitrary code. \n\n * [CVE-2008-2802](<https://security-tracker.debian.org/tracker/CVE-2008-2802>)\n\n\"moz_bug_r_a4\" discovered that XUL documents can escalate privileges by accessing the pre-compiled \"fastload\" file. \n\n * [CVE-2008-2803](<https://security-tracker.debian.org/tracker/CVE-2008-2803>)\n\n\"moz_bug_r_a4\" discovered that missing input sanitising in the mozIJSSubScriptLoader.loadSubScript() function could lead to the execution of arbitrary code. Iceweasel itself is not affected, but some addons are. \n\n * [CVE-2008-2807](<https://security-tracker.debian.org/tracker/CVE-2008-2807>)\n\nDaniel Glazman discovered that a programming error in the code for parsing .properties files could lead to memory content being exposed to addons, which could lead to information disclosure. \n\n * [CVE-2008-2809](<https://security-tracker.debian.org/tracker/CVE-2008-2809>)\n\nJohn G. Myers, Frank Benkstein and Nils Toedtmann discovered that alternate names on self-signed certificates were handled insufficiently, which could lead to spoofings secure connections. \n\n * [CVE-2008-2811](<https://security-tracker.debian.org/tracker/CVE-2008-2811>)\n\nGreg McManus discovered discovered a crash in the block reflow code, which might allow the execution of arbitrary code. \n\nFor the stable distribution (etch), these problems have been fixed in version 1.5.0.13+1.5.0.15b.dfsg1+prepatch080614d-0etch1. Packages for s390 are not yet available and will be provided later. \n\nFor the unstable distribution (sid), these problems have been fixed in version 2.0.0.16-1. \n\nWe recommend that you upgrade your icedove package.", "published": "2008-07-27T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://www.debian.org/security/dsa-1621", "cvelist": ["CVE-2008-2785", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-0304", "CVE-2008-2807", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-09-02T18:21:40"}], "suse": [{"id": "SUSE-SA:2008:034", "type": "suse", "title": "remote code execution in MozillaFirefox", "description": "Mozilla Firefox was updated to version 2.0.0.15, fixing various bugs including following security bugs.\n#### Solution\nThere is no known workaround, please install the update packages.", "published": "2008-07-11T13:26:28", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00004.html", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798", "CVE-2008-2806"], "lastseen": "2016-09-04T11:45:49"}], "centos": [{"id": "CESA-2008:0549", "type": "centos", "title": "firefox security update", "description": "**CentOS Errata and Security Advisory** CESA-2008:0549\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015058.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015059.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015062.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015063.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015067.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015069.html\n\n**Affected packages:**\nfirefox\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2008-0549.html", "published": "2008-07-02T19:45:20", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://lists.centos.org/pipermail/centos-announce/2008-July/015058.html", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-12-05T20:08:11"}, {"id": "CESA-2008:0547", "type": "centos", "title": "seamonkey security update", "description": "**CentOS Errata and Security Advisory** CESA-2008:0547\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015056.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015057.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015060.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015061.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015066.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015068.html\n\n**Affected packages:**\nseamonkey\nseamonkey-chat\nseamonkey-devel\nseamonkey-dom-inspector\nseamonkey-js-debugger\nseamonkey-mail\nseamonkey-nspr\nseamonkey-nspr-devel\nseamonkey-nss\nseamonkey-nss-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2008-0547.html", "published": "2008-07-02T19:43:27", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://lists.centos.org/pipermail/centos-announce/2008-July/015056.html", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-12-05T20:01:01"}, {"id": "CESA-2008:0616", "type": "centos", "title": "thunderbird security update", "description": "**CentOS Errata and Security Advisory** CESA-2008:0616\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015157.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015158.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015159.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015160.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015173.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015174.html\n\n**Affected packages:**\nthunderbird\n\n**Upstream details at:**\n\nhttps://rhn.redhat.com/errata/RHSA-2008-0616.html", "published": "2008-07-24T18:46:44", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://lists.centos.org/pipermail/centos-announce/2008-July/015157.html", "cvelist": ["CVE-2008-2801", "CVE-2008-2785", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-12-05T20:07:22"}, {"id": "CESA-2008:0547-01", "type": "centos", "title": "seamonkey security update", "description": "**CentOS Errata and Security Advisory** CESA-2008:0547-01\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015064.html\n\n**Affected packages:**\nseamonkey\nseamonkey-chat\nseamonkey-devel\nseamonkey-dom-inspector\nseamonkey-js-debugger\nseamonkey-mail\nseamonkey-nspr\nseamonkey-nspr-devel\nseamonkey-nss\nseamonkey-nss-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/rh21as-errata.html", "published": "2008-07-03T00:05:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://lists.centos.org/pipermail/centos-announce/2008-July/015064.html", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-12-05T20:42:44"}, {"id": "CESA-2008:0569", "type": "centos", "title": "devhelp, firefox, xulrunner, yelp security update", "description": "**CentOS Errata and Security Advisory** CESA-2008:0569\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015074.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-July/015075.html\n\n**Affected packages:**\ndevhelp\ndevhelp-devel\nfirefox\nxulrunner\nxulrunner-devel\nxulrunner-devel-unstable\nyelp\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2008-0569.html", "published": "2008-07-06T14:53:42", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://lists.centos.org/pipermail/centos-announce/2008-July/015074.html", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-12-05T20:06:47"}], "ubuntu": [{"id": "USN-619-1", "type": "ubuntu", "title": "Firefox vulnerabilities", "description": "Various flaws were discovered in the browser engine. By tricking \na user into opening a malicious web page, an attacker could cause \na denial of service via application crash, or possibly execute \narbitrary code with the privileges of the user invoking the \nprogram. ([CVE-2008-2798](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2798>), [CVE-2008-2799](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2799>))\n\nSeveral problems were discovered in the JavaScript engine. If a \nuser were tricked into opening a malicious web page, an attacker \ncould perform cross-site scripting attacks. ([CVE-2008-2800](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2800>))\n\nCollin Jackson discovered various flaws in the JavaScript engine \nwhich allowed JavaScript to be injected into signed JAR files. If \na user were tricked into opening malicious web content, an \nattacker may be able to execute arbitrary code with the privileges \nof a different website or link content within the JAR file to an \nattacker-controlled JavaScript file. ([CVE-2008-2801](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2801>))\n\nIt was discovered that Firefox would allow non-privileged XUL \ndocuments to load chrome scripts from the fastload file. This \ncould allow an attacker to execute arbitrary JavaScript code with \nchrome privileges. ([CVE-2008-2802](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2802>))\n\nA flaw was discovered in Firefox that allowed overwriting trusted \nobjects via mozIJSSubScriptLoader.loadSubScript(). If a user were \ntricked into opening a malicious web page, an attacker could \nexecute arbitrary code with the privileges of the user invoking the \nprogram. ([CVE-2008-2803](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2803>))\n\nClaudio Santambrogio discovered a vulnerability in Firefox which \ncould lead to stealing of arbitrary files. If a user were tricked \ninto opening malicious content, an attacker could force the browser \ninto uploading local files to the remote server. ([CVE-2008-2805](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2805>))\n\nGregory Fleischer discovered a flaw in Java LiveConnect. An attacker \ncould exploit this to bypass the same-origin policy and create \narbitrary socket connections to other domains. ([CVE-2008-2806](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2806>))\n\nDaniel Glazman found that an improperly encoded .properties file \nin an add-on can result in uninitialized memory being used. If \na user were tricked into installing a malicious add-on, the \nbrowser may be able to see data from other programs. \n([CVE-2008-2807](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2807>))\n\nMasahiro Yamada discovered that Firefox did not properly sanitize \nfile URLs in directory listings, resulting in files from directory \nlistings being opened in unintended ways or not being able to be \nopened by the browser at all. ([CVE-2008-2808](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2808>))\n\nJohn G. Myers discovered a weakness in the trust model used by \nFirefox regarding alternate names on self-signed certificates. If \na user were tricked into accepting a certificate containing \nalternate name entries, an attacker could impersonate another \nserver. ([CVE-2008-2809](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2809>))\n\nA flaw was discovered in the way Firefox opened URL files. If a user \nwere tricked into opening a bookmark to a malicious web page, the \npage could potentially read from local files on the user's computer. \n([CVE-2008-2810](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2810>))\n\nA vulnerability was discovered in the block reflow code of Firefox. \nThis vulnerability could be used by an attacker to cause a denial of \nservice via application crash, or execute arbitrary code with the \nprivileges of the user invoking the program. ([CVE-2008-2811](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2811>))", "published": "2008-07-02T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.ubuntu.com/usn/usn-619-1", "cvelist": ["CVE-2008-2801", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798", "CVE-2008-2806"], "lastseen": "2017-05-01T08:29:24"}, {"id": "USN-629-1", "type": "ubuntu", "title": "Thunderbird vulnerabilities", "description": "Various flaws were discovered in the browser engine. If a user had \nJavascript enabled and were tricked into opening a malicious web \npage, an attacker could cause a denial of service via application \ncrash, or possibly execute arbitrary code with the privileges of the \nuser invoking the program. ([CVE-2008-2798](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2798>), [CVE-2008-2799](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2799>))\n\nIt was discovered that Thunderbird would allow non-privileged XUL \ndocuments to load chrome scripts from the fastload file if Javascript \nwas enabled. This could allow an attacker to execute arbitrary \nJavascript code with chrome privileges. ([CVE-2008-2802](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2802>))\n\nA flaw was discovered in Thunderbird that allowed overwriting trusted \nobjects via mozIJSSubScriptLoader.loadSubScript(). If a user had \nJavascript enabled and was tricked into opening a malicious web page, \nan attacker could execute arbitrary code with the privileges of the \nuser invoking the program. ([CVE-2008-2803](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2803>))\n\nDaniel Glazman found that an improperly encoded .properties file in \nan add-on can result in uninitialized memory being used. If a user \nwere tricked into installing a malicious add-on, Thunderbird may be \nable to see data from other programs. ([CVE-2008-2807](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2807>))\n\nJohn G. Myers discovered a weakness in the trust model used by \nThunderbird regarding alternate names on self-signed certificates. \nIf a user were tricked into accepting a certificate containing \nalternate name entries, an attacker could impersonate another \nserver. ([CVE-2008-2809](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2809>))\n\nA vulnerability was discovered in the block reflow code of \nThunderbird. If a user enabled Javascript, this vulnerability could \nbe used by an attacker to cause a denial of service via application \ncrash, or execute arbitrary code with the privileges of the user \ninvoking the program. ([CVE-2008-2811](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2811>))\n\nA flaw was discovered in the browser engine. A variable could be made \nto overflow causing Thunderbird to crash. If a user enable Javascript \nand was tricked into opening a malicious web page, an attacker could \ncause a denial of service or possibly execute arbitrary code with the \nprivileges of the user invoking the program. ([CVE-2008-2785](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-2785>))\n\nMozilla developers audited the MIME handling code looking for similar \nvulnerabilities to the previously fixed [CVE-2008-0304](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2008-0304>), and changed \nseveral function calls to use safer versions of string routines.", "published": "2008-07-24T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.ubuntu.com/usn/usn-629-1", "cvelist": ["CVE-2008-2785", "CVE-2008-2799", "CVE-2008-2803", "CVE-2008-0304", "CVE-2008-2807", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2017-05-01T08:29:27"}], "gentoo": [{"id": "GLSA-200808-03", "type": "gentoo", "title": "Mozilla products: Multiple vulnerabilities", "description": "### Background\n\nMozilla Firefox is an open-source web browser and Mozilla Thunderbird an open-source email client, both from the Mozilla Project. The SeaMonkey project is a community effort to deliver production-quality releases of code derived from the application formerly known as the 'Mozilla Application Suite'. XULRunner is a Mozilla runtime package that can be used to bootstrap XUL+XPCOM applications like Firefox and Thunderbird. \n\n### Description\n\nThe following vulnerabilities were reported in all mentioned Mozilla products: \n\n * TippingPoint's Zero Day Initiative reported that an incorrect integer data type is used as a CSS object reference counter, leading to a counter overflow and a free() of in-use memory (CVE-2008-2785). \n * Igor Bukanov, Jesse Ruderman and Gary Kwong reported crashes in the JavaScript engine, possibly triggering memory corruption (CVE-2008-2799). \n * Devon Hubbard, Jesse Ruderman, and Martijn Wargers reported crashes in the layout engine, possibly triggering memory corruption (CVE-2008-2798). \n * moz_bug_r_a4 reported that XUL documents that include a script from a chrome: URI that points to a fastload file would be executed with the privileges specified in the file (CVE-2008-2802). \n * moz_bug_r_a4 reported that the mozIJSSubScriptLoader.LoadScript() function only apply XPCNativeWrappers to scripts loaded from standard \"chrome:\" URIs, which could be the case in third-party add-ons (CVE-2008-2803). \n * Astabis reported a crash in the block reflow implementation related to large images (CVE-2008-2811). \n * John G. Myers, Frank Benkstein and Nils Toedtmann reported a weakness in the trust model used by Mozilla, that when a user accepts an SSL server certificate on the basis of the CN domain name in the DN field, the certificate is also regarded as accepted for all domain names in subjectAltName:dNSName fields (CVE-2008-2809). \n\nThe following vulnerabilities were reported in Firefox, SeaMonkey and XULRunner: \n\n * moz_bug_r_a4 reported that the Same Origin Policy is not properly enforced on JavaScript (CVE-2008-2800). \n * Collin Jackson and Adam Barth reported that JAR signing is not properly implemented, allowing injection of JavaScript into documents within a JAR archive (CVE-2008-2801). \n * Opera Software reported an error allowing for arbitrary local file upload (CVE-2008-2805). \n * Daniel Glazman reported that an invalid .properties file for an add-on might lead to the usage of uninitialized memory (CVE-2008-2807). \n * Masahiro Yamada reported that HTML in \"file://\" URLs in directory listings is not properly escaped (CVE-2008-2808). \n * Geoff reported that the context of Windows Internet shortcut files is not correctly identified (CVE-2008-2810). \n * The crash vulnerability (CVE-2008-1380) that was previously announced in GLSA 200805-18 is now also also resolved in Seamonkey binary ebuilds. \n\nThe following vulnerability was reported in Firefox only: \n\n * Billy Rios reported that the Pipe character in a command-line URI is identified as a request to open multiple tabs, allowing to open \"chrome\" and \"file\" URIs (CVE-2008-2933). \n\n### Impact\n\nA remote attacker could entice a user to view a specially crafted web page or email that will trigger one of the vulnerabilities, possibly leading to the execution of arbitrary code or a Denial of Service. It is also possible for an attacker to trick a user to upload arbitrary files or to accept an invalid certificate for a spoofed web site, to read uninitialized memory, to violate Same Origin Policy, or to conduct Cross-Site Scripting attacks. \n\n### Workaround\n\nThere is no known workaround at this time. \n\n### Resolution\n\nAll Mozilla Firefox users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=www-client/mozilla-firefox-2.0.0.16\"\n\nAll Mozilla Firefox binary users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=www-client/mozilla-firefox-bin-2.0.0.16\"\n\nAll Mozilla Thunderbird users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=mail-client/mozilla-thunderbird-2.0.0.16\"\n\nAll Mozilla Thunderbird binary users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=mail-client/mozilla-thunderbird-bin-2.0.0.16\"\n\nAll Seamonkey users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=www-client/seamonkey-1.1.11\"\n\nAll Seamonkey binary users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=www-client/seamonkey-bin-1.1.11\"\n\nAll XULRunner users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=net-libs/xulrunner-1.8.1.16\"\n\nAll XULRunner binary users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=net-libs/xulrunner-bin-1.8.1.16\"", "published": "2008-08-06T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://security.gentoo.org/glsa/200808-03", "cvelist": ["CVE-2008-2933", "CVE-2008-2801", "CVE-2008-2785", "CVE-2008-2799", "CVE-2008-1380", "CVE-2008-2803", "CVE-2008-2807", "CVE-2008-2810", "CVE-2008-2805", "CVE-2008-2808", "CVE-2008-2800", "CVE-2008-2802", "CVE-2008-2809", "CVE-2008-2811", "CVE-2008-2798"], "lastseen": "2016-09-06T19:46:53"}], "canvas": [{"id": "FIREFOX_DEFINESETTER", "type": "canvas", "title": "Immunity Canvas: FIREFOX_DEFINESETTER", "description": "**Name**| firefox_definesetter \n---|--- \n**CVE**| CVE-2008-2798 \n**Exploit Pack**| [CANVAS](<http://http://www.immunityinc.com/products-canvas.shtml>) \n**Description**| Firefox <= 2.0.0.14 Javascript defineSetter Memory Corruption \n**Notes**| CVE Name: CVE-2008-2798 \nVENDOR: Mozilla \nRepeatability: Infinite (client side - crash the browser) \nCVS URL: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2798 \nDate public: 07/01/2008 \nCVSS: 10.0 \n\n", "published": "2008-07-07T19:41:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://exploitlist.immunityinc.com/home/exploitpack/CANVAS/firefox_definesetter", "cvelist": ["CVE-2008-2798"], "lastseen": "2016-09-25T14:14:21"}]}}