Vulnerabilita’ in Mozilla SeaMonkey 1.1.x

Descrizione del problema

Mozilla ha pubblicato un security advisory relativo
ad alcune vulnerabilita’ presenti nella suite SeaMonkey.

:: Piattaforme e Software interessati

SeaMonkey versioni precedenti alla 1.1.12

:: Impatto

Security restrictions bypass
Exposure of system information
Exposure of sensitive information
System access
DoS

:: Soluzione

Aggiornare SeaMonkey alla versione 1.1.12
http://www.seamonkey-project.org/releases/

:: Riferimenti

Mozilla Security Advisory
http://www.mozilla.org/security/known-vulnerabilities/seamonkey11.html
http://www.mozilla.org/security/announce/2008/mfsa2008-37.html
http://www.mozilla.org/security/announce/2008/mfsa2008-38.html
http://www.mozilla.org/security/announce/2008/mfsa2008-40.html
http://www.mozilla.org/security/announce/2008/mfsa2008-41.html
http://www.mozilla.org/security/announce/2008/mfsa2008-42.html
http://www.mozilla.org/security/announce/2008/mfsa2008-43.html
http://www.mozilla.org/security/announce/2008/mfsa2008-44.html
http://www.mozilla.org/security/announce/2008/mfsa2008-45.html

Mitre’s CVE ID
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0016
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3835
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3837
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4058
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4059
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4060
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4061
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4062
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4065
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4066
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4067
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4068
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4069

Securityfocus Bugtraq ID
http://www.securityfocus.com/bid/31346

Secunia
http://secunia.com/Advisories/32010/

Red Hat
http://rhn.redhat.com/errata/RHSA-2008-0882.html

Questa voce è stata pubblicata in Sicurezza e contrassegnata con , , , , , , , , , , , , . Contrassegna il permalink.