34 matches found
openSUSE 10 Security Update : seamonkey (seamonkey-4596)
This update fixes several security issues in Mozilla SeaMonkey 1.0.9. Following security problems were fixed : - MFSA 2007-26 / CVE-2007-3844: Privilege escalation through chrome-loaded about:blank windows Mozilla researcher mozbugra4 reported that a flaw was introduced by the fix for MFSA 2007-2...
CentOS 4 / 5 : firefox (CESA-2007:0979)
Updated firefox packages that fix several security bugs are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla Firefox is an open source Web browser. Several flaws were found in the way i...
openSUSE 10 Security Update : seamonkey (seamonkey-4594)
This update fixes several security issues in Mozilla SeaMonkey 1.1.5. Following security problems were fixed : - MFSA 2007-26 / CVE-2007-3844: Privilege escalation through chrome-loaded about:blank windows Mozilla researcher mozbugra4 reported that a flaw was introduced by the fix for MFSA 2007-2...
CentOS 3 / 4 : seamonkey (CESA-2007:0980)
Updated SeaMonkey packages that fix several security bugs are now available for Red Hat Enterprise Linux 2.1, 3, and 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. SeaMonkey is an open source Web browser, advanced email and newsgroup client...
openSUSE 10 Security Update : MozillaFirefox (MozillaFirefox-4572)
This update brings Mozilla Firefox to security update version 2.0.0.8 Following security problems were fixed : - MFSA 2007-26 / CVE-2007-3844: Privilege escalation through chrome-loaded about:blank windows Mozilla researcher mozbugra4 reported that a flaw was introduced by the fix for MFSA 2007-2...
Mozilla Foundation Security Advisory 2007-34
Mozilla Foundation Security Advisory 2007-34 Title: Possible file stealing through sftp protocol Impact: Moderate Announced: October 18, 2007 Reporter: Georgi Guninski Products: Firefox, SeaMonkey Fixed in: Firefox 2.0.0.8 SeaMonkey 1.1.5 Description On Linux machines with gnome-vfs support the...
thunderbird security update
CentOS Errata and Security Advisory CESA-2007:0981 Updated thunderbird packages that fix several security bugs are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Mozilla Thunderbird is a...
Critical: Red Hat Security Advisory: seamonkey security update
Updated seamonkey packages that fix several security bugs are now available for Red Hat Enterprise Linux 2.1, 3, and 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. SeaMonkey is an open source Web browser, advanced email and newsgroup client...
Moderate: Red Hat Security Advisory: thunderbird security update
Updated thunderbird packages that fix several security bugs are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws wer...
Possible file stealing through sftp protocol — Mozilla
On Linux machines with gnome-vfs support the smb: and sftp: URI schemes are available in Firefox. Georgi Guninski showed that if an attacker can store the attack page in a mutually accessible location on the target server /tmp perhaps and lure the victim into loading it, the attacker could...
CVE-2007-0020
Heap-based buffer overflow in the SFTP protocol handler for Panic Transmit Transmit.app up to 3.5.5 allows remote attackers to execute arbitrary code via a long ftps:// URL...
Heap overflow
Heap-based buffer overflow in the SFTP protocol handler for Panic Transmit Transmit.app up to 3.5.5 allows remote attackers to execute arbitrary code via a long ftps:// URL...
CVE-2007-0020
Heap-based buffer overflow in the SFTP protocol handler for Panic Transmit Transmit.app up to 3.5.5 allows remote attackers to execute arbitrary code via a long ftps:// URL...
EUVD-2007-0024
Heap-based buffer overflow in the SFTP protocol handler for Panic Transmit Transmit.app up to 3.5.5 allows remote attackers to execute arbitrary code via a long ftps:// URL...