12 matches found
Scientific Linux Security Update : thunderbird on SL4.x, SL5.x i386/x86_64
Several flaws were found in the processing of malformed HTML mail content. An HTML mail message containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code as the user running Thunderbird. CVE-2008-0016, CVE-2008-4058, CVE-2008-4059, CVE-2008-4060,...
Mandriva Update for mozilla-thunderbird MDVSA-2008:206 (mozilla-thunderbird)
Check for the Version of mozilla-thunderbird OpenVAS Vulnerability Test Mandriva Update for mozilla-thunderbird MDVSA-2008:206 mozilla-thunderbird Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...
Mandriva Update for mozilla-thunderbird MDVSA-2008:206 (mozilla-thunderbird)
Check for the Version of mozilla-thunderbird OpenVAS Vulnerability Test Mandriva Update for mozilla-thunderbird MDVSA-2008:206 mozilla-thunderbird Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...
Ubuntu: Security Advisory (USN-647-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RedHat Update for thunderbird RHSA-2008:0908-01
Check for the Version of thunderbird OpenVAS Vulnerability Test RedHat Update for thunderbird RHSA-2008:0908-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...
Fedora Update for thunderbird FEDORA-2008-9859
Check for the Version of thunderbird OpenVAS Vulnerability Test Fedora Update for thunderbird FEDORA-2008-9859 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
Fedora Update for thunderbird FEDORA-2008-9807
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
openSUSE 10 Security Update : MozillaThunderbird (MozillaThunderbird-5655)
This update brings Mozilla Thunderbird to version 2.0.0.17. It contains the following security fixes: MFSA 2008-46 / CVE-2008-4070: Heap overflow when canceling a newsgroup message MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities MFSA 2008-43: BOM characters...
Mozilla Foundation Security Advisory 2008-46
Mozilla Foundation Security Advisory 2008-46 Title: Heap overflow when canceling newsgroup message Impact: Critical Announced: September 25, 2008 Reporter: Georgi Guninski Products: Thunderbird, SeaMonkey Fixed in: Thunderbird 2.0.0.17 SeaMonkey 1.1.12 Description Georgi Guninski reported a buffe...
Slackware 10.2 / 11.0 / 12.0 / 12.1 / current : mozilla-thunderbird (SSA:2008-270-01)
New mozilla-thunderbird packages are available for Slackware 10.2, 11.0, 12.0, 12.1, and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2008-270-01. The te...
CVE-2008-4070
Heap-based buffer overflow in Mozilla Thunderbird before 2.0.0.17 and SeaMonkey before 1.1.12 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long header in a news article, related to "canceling a newsgroup message" and "cancelled...
CVE-2008-4070
The provided documents confirm CVE-2008-4070 is a heap-based buffer overflow in Thunderbird (before 2.0.0.17) and SeaMonkey (before 1.1.12) triggered by a long header in a news article when canceling a newsgroup message. Impact stated: remote code execution risk or application crash (denial of se...