Mozilla Updates for Multiple Vulnerabilities
http://jvnrss.ise.chuo-u.ac.jp/jtg/trn/en/TRTA07-151A.html
JVNRSS based Status Tracking Notes: The Mozilla web browser and derived products contain several vulnerabilities, the most severe of which could allow a remote attacker to execute arbitrary code on an affected system.JVNRSS Feasibility Study Teamjvn@jvn.jpTRTA07-151A2007-06-01T11:05+00:002007-06-01T11:05+00:002007-06-01T11:05+00:00Mozilla Addresses Multiple Vulnerabilities
http://www.us-cert.gov/cas/techalerts/TA07-151A.html
Via US-CERT Mailing List
The Mozilla web browser and derived products contain several vulnerabilities, the most severe of which could allow a remote attacker to execute arbitrary code on an affected system.
US-CERTTA07-151Ahttp://www.us-cert.gov/cas/techalerts/TA07-151A.htmlhttp://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2868http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2867http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2869http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-1362http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-1558http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2870http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2871http://www.kb.cert.org/vuls/id/609956http://www.kb.cert.org/vuls/id/7516362007-05-31T15:41-04:002007-05-31T15:41-04:002007-05-31T15:41-04:00Mozilla Releases Security Advisories to Address Multiple Vulnerabilities
http://www.us-cert.gov/current/archive/2007/05/31/archive.html#mozilla_releases_security_advisories_to
The Mozilla Foundation has released Security Advisories to address multiple vulnerabilities in Firefox, Thunderbird, and SeaMonkey. The impacts of these vulnerabilities include arbitrary code execution, denial of service, memory corruption and cross-site scripting.
US-CERThttp://www.us-cert.gov/cas/techalerts/TA07-151A.htmlhttp://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2868http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2867http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2869http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-1362http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-1558http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2870http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2871http://www.kb.cert.org/vuls/id/609956http://www.kb.cert.org/vuls/id/7516362007-05-312007-05-312007-05-31XUL Popup Spoofing
http://www.mozilla.org/security/announce/2007/mfsa2007-17.html
Mozillamfsa2007-17http://www.us-cert.gov/cas/techalerts/TA07-151A.htmlhttp://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-28712007-05-302007-05-302007-05-30SeaMonkey 1.1.2 Release
http://www.mozilla.org/projects/seamonkey/releases/seamonkey1.1.2/
Mozillahttp://www.us-cert.gov/cas/techalerts/TA07-151A.html2007-05-302007-05-302007-05-30SeaMonkey 1.0.9 Release
http://www.mozilla.org/projects/seamonkey/releases/seamonkey1.0.9/
Mozillahttp://www.us-cert.gov/cas/techalerts/TA07-151A.html2007-05-302007-05-302007-05-30Mozilla Firefox 2.0.0.4 Release
http://www.mozilla.com/en-US/firefox/2.0.0.4/releasenotes/
Mozillahttp://www.us-cert.gov/cas/techalerts/TA07-151A.html2007-05-302007-05-302007-05-30Mozilla Thunderbird 1.5.0.12 Release
http://www.mozilla.com/en-US/thunderbird/releases/1.5.0.12.html
Mozilla2007-05-302007-05-302007-05-30Mozilla Firefox 1.5.0.12 Release
http://www.mozilla.com/en-US/firefox/releases/1.5.0.12.html
Mozillahttp://www.us-cert.gov/cas/techalerts/TA07-151A.html2007-05-302007-05-302007-05-30Crashes with evidence of memory corruption (rv:1.8.0.12/1.8.1.4)
http://www.mozilla.org/security/announce/2007/mfsa2007-12.html
Mozillamfsa2007-12http://www.us-cert.gov/cas/techalerts/TA07-151A.htmlhttp://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2867http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-28682007-05-302007-05-302007-05-30Persistent Autocomplete Denial of Service
http://www.mozilla.org/security/announce/2007/mfsa2007-13.html
Mozillamfsa2007-13http://www.us-cert.gov/cas/techalerts/TA07-151A.htmlhttp://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-28692007-05-302007-05-302007-05-30Path Abuse in Cookies
http://www.mozilla.org/security/announce/2007/mfsa2007-14.html
Mozillamfsa2007-14http://www.us-cert.gov/cas/techalerts/TA07-151A.htmlhttp://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-13622007-05-302007-05-302007-05-30Security Vulnerability in APOP Authentication
http://www.mozilla.org/security/announce/2007/mfsa2007-15.html
Mozillamfsa2007-15http://www.us-cert.gov/cas/techalerts/TA07-151A.htmlhttp://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-15582007-05-302007-05-302007-05-30XSS using addEventListener
http://www.mozilla.org/security/announce/2007/mfsa2007-16.html
Mozillamfsa2007-16http://www.us-cert.gov/cas/techalerts/TA07-151A.htmlhttp://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-28702007-05-302007-05-302007-05-30UIrTEx4bwFar+0Os1SjH4R8cDec=k10PZ5+n6Ca3VikjXJhEfbonvH4=ihjze1qvC2qR47S5WXLzVYspfoukPXvuBdc6mz1Pc20eP0DRsq6K5O2ku1RjaKAHAu3NbGv4Ooo+uvL/+AdJbc+Wyomf/RTh58SDZShaqjY6aEIeCD+WaGU9fUZ+B+Qm3xN4Ij/+MmNX6PwZdiOYR/HJUOqyO5ZwuBXCuqYehJs=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