exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

Secunia Security Advisory 23545

Secunia Security Advisory 23545
Posted Dec 29, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for MozillaFirefox and MozillaThunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to gain knowledge of certain information, conduct cross-site scripting attacks and potentially compromise a user's system.

tags | advisory, vulnerability, xss
systems | linux, suse
SHA-256 | b0eb0fbdebf5d837bc689f73ea81d1dd954f4f8edb77f9c628a8b9a0b6fdefa4

Secunia Security Advisory 23545

Change Mirror Download


----------------------------------------------------------------------

Secunia is proud to announce the availability of the Secunia Software
Inspector.

The Secunia Software Inspector is a free service that detects insecure
versions of software that you may have installed in your system. When
insecure versions are detected, the Secunia Software Inspector also
provides thorough guidelines for updating the software to the latest
secure version from the vendor.

Try it out online:
http://secunia.com/software_inspector/

----------------------------------------------------------------------

TITLE:
SUSE updates for MozillaFirefox and MozillaThunderbird

SECUNIA ADVISORY ID:
SA23545

VERIFY ADVISORY:
http://secunia.com/advisories/23545/

CRITICAL:
Highly critical

IMPACT:
Cross Site Scripting, Exposure of sensitive information, DoS, System
access

WHERE:
>From remote

OPERATING SYSTEM:
SUSE Linux 10.1
http://secunia.com/product/10796/
SUSE Linux 10
http://secunia.com/product/6221/
SUSE Linux 9.3
http://secunia.com/product/4933/
SUSE Linux Enterprise Server 10
http://secunia.com/product/12192/

DESCRIPTION:
SUSE has issued an update for MozillaFirefox and MozillaThunderbird.
This fixes some vulnerabilities, which can be exploited by malicious
people to gain knowledge of certain information, conduct cross-site
scripting attacks and potentially compromise a user's system.

For more information:
SA23282
SA23420

SOLUTION:
Apply updated packages.

x86 Platform:

openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaFirefox-2.0.0.1-0.1.i586.rpm
eea9f40b409823d691ad0e1b3daf5a82
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaFirefox-translations-2.0.0.1-0.1.i586.rpm
dc5e760f067b2d1ea41be90c92517a5d
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaThunderbird-1.5.0.9-0.1.i586.rpm
0b3638d9bfccfca0cf149df1200e6c47
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaThunderbird-translations-1.5.0.9-0.1.i586.rpm
d51cb9ff1cb3f5875cb4fa60b58f159b

SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaFirefox-1.5.0.9-0.2.i586.rpm
fa3a6d10cb1a6dd801668e8881424036
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaFirefox-translations-1.5.0.9-0.2.i586.rpm
a40dc8d7e29aa8bb21ecb3c348e0cc05
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaThunderbird-1.5.0.9-0.1.i586.rpm
3bbfce9a8abf9394959348e449b35b95
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaThunderbird-translations-1.5.0.9-0.1.i586.rpm
869cac360c49cc15358b205923f2ee1d

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/MozillaFirefox-1.5.0.9-0.1.i586.rpm
f0b6bd1b56b874eb0003752cd112d6db
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/MozillaFirefox-translations-1.5.0.9-0.1.i586.rpm
1722380cad796cc29d15374f7c471f09
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/MozillaThunderbird-1.5.0.9-0.1.i586.rpm
82d7d8847f363a9e46fc9d22aa44f0c8

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/MozillaFirefox-1.5.0.9-0.1.i586.rpm
06b3af42ed8f528a306650691558301f
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/MozillaFirefox-translations-1.5.0.9-0.1.i586.rpm
be42160ef33ead2625b20043267c2ce2
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/MozillaThunderbird-1.5.0.9-0.1.i586.rpm
239aa22605bbd7c89a8489fb49c51f5d

Power PC Platform:

openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/MozillaFirefox-2.0.0.1-0.1.ppc.rpm
c9611899a9bed84f006f8451dfcc44ae
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/MozillaFirefox-translations-2.0.0.1-0.1.ppc.rpm
e539db36e921505166e238a5aa853750
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/MozillaThunderbird-1.5.0.9-0.1.ppc.rpm
0d0b60cf410588c59003d04ab0ce0b33
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/MozillaThunderbird-translations-1.5.0.9-0.1.ppc.rpm
0445e6652c8862691426ed623db2b362

SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/MozillaFirefox-1.5.0.9-0.2.ppc.rpm
3d399bf2bab2611809add386b63c085a
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/MozillaFirefox-translations-1.5.0.9-0.2.ppc.rpm
4a0223d379107cc45ef13d59369914dd
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/MozillaThunderbird-1.5.0.9-0.1.ppc.rpm
a795cd195043826ab0c9227251058905
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/MozillaThunderbird-translations-1.5.0.9-0.1.ppc.rpm
a2c70ba35f54ff5cf7970d05940f00ee

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/MozillaFirefox-1.5.0.9-0.1.ppc.rpm
72520bda4b0156991ce85e34eeef90a9
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/MozillaFirefox-translations-1.5.0.9-0.1.ppc.rpm
9d7f48fdce0092b7e00920ead4db56dc
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/MozillaThunderbird-1.5.0.9-0.1.ppc.rpm
aea7d9cfe7b9b95ddd0761bf4fce7fc1

x86-64 Platform:

openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/MozillaFirefox-2.0.0.1-0.1.x86_64.rpm
941d4d0e8a4332e3d585b67347d3bfaf
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/MozillaFirefox-translations-2.0.0.1-0.1.x86_64.rpm
21cbeb89fcad730aecb715d92bdc9521
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/MozillaThunderbird-1.5.0.9-0.1.x86_64.rpm
edc263e07b53d019e0d686c2134dddf5
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/MozillaThunderbird-translations-1.5.0.9-0.1.x86_64.rpm
f4f8dedac060cbd33f4b480aacb05bef

SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/MozillaThunderbird-1.5.0.9-0.1.x86_64.rpm
37f2af41fa077600d68df74547da4339
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/MozillaThunderbird-translations-1.5.0.9-0.1.x86_64.rpm
094c3157d83486a2fb10f0e3bb365a0a

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/MozillaThunderbird-1.5.0.9-0.1.x86_64.rpm
f78215541f3b1f1af4aeba8b7414e907

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/MozillaThunderbird-1.5.0.9-0.1.x86_64.rpm
dff09a04cd253fdcf830f93aa10edf49

Sources:

openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/MozillaFirefox-2.0.0.1-0.1.src.rpm
8bdf86d5275d649f546a22c63a4b8cfb
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/MozillaThunderbird-1.5.0.9-0.1.src.rpm
223fff785e9e86fd5cbe0106ab1a5ddf

SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/MozillaFirefox-1.5.0.9-0.2.src.rpm
38373d35abf94ec8c0a2008dd1b6fc0d
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/MozillaThunderbird-1.5.0.9-0.1.src.rpm
184a16b5b80bd056a9526873756b75a5

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/MozillaFirefox-1.5.0.9-0.1.src.rpm
62ade9bd59c8da0e9b739e59a8247708
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/MozillaThunderbird-1.5.0.9-0.1.src.rpm
2ec8f62cf812e2ea756e618c941fbdb5

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/MozillaFirefox-1.5.0.9-0.1.src.rpm
c4444ff036405a4baa37c33b975941fa
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/MozillaThunderbird-1.5.0.9-0.1.src.rpm
14f7289ab7a5a2fcfd6cedf2acda628b

ORIGINAL ADVISORY:
http://lists.suse.com/archive/suse-security-announce/2006-Dec/0010.html

OTHER REFERENCES:
SA23282:
http://secunia.com/advisories/23282/

SA23420:
http://secunia.com/advisories/23420/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Login or Register to add favorites

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    32 Files
  • 20
    Mar 20th
    46 Files
  • 21
    Mar 21st
    16 Files
  • 22
    Mar 22nd
    13 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    12 Files
  • 26
    Mar 26th
    31 Files
  • 27
    Mar 27th
    19 Files
  • 28
    Mar 28th
    42 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close