Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

FLEA-2007-0033-1: firefox thunderbird

from [Foresight Linux Essential Announcement Service] Network Security [Permanent Link]
Subject: FLEA-2007-0033-1: firefox thunderbird
Date: Tue, 24 Jul 2007 12:55:32 -0400 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Foresight Linux Essential Advisory: 2007-0033-1
Published: 2007-07-24

Rating: Major

Updated Versions:
    firefox=/foresight.rpath.org@fl:1-devel//1/2.0.0.5-1-1
    
thunderbird=/conary.rpath.com@rpl:devel//foresight.rpath.org@fl:1-devel//1/2.0.0.5-0.1-1
    group-dist=/foresight.rpath.org@fl:1-devel//1/1.3.2-0.6-2

References:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3089
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3656
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3734
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3735
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3736
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3737
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3738
    https://issues.rpath.com/browse/RPL-1561

Description:
    Previous versions of the firefox and thunderbird packages are
    vulnerable to several types of attacks, some of which are understood
    to allow compromised or malicious sites to run arbitrary code or
    commands as the user running the vulnerable application.

- ---

Copyright 2007 Foresight Linux Project
This file is distributed under the terms of the MIT License.
A copy is available at http://www.foresightlinux.org/permanent/mit-license.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.4 (GNU/Linux)

iQIVAwUBRqYu9tfwEn07iAtZAQLDlQ/8CxsUkYf1amtYqX4XGoXbG3Vt0V/M1TLn
xYRAy9tT7FtoMpppQBVoGrvR/Y3jnE1n7OptmO713LgjWuYvL88Krj3DAZMqXwZM
iv4gzZ61MMuZbNm5oYQ9r1uHjiDGrHJdAgVRyfqy5i3KXzT810oZ10Ckp1qinzJG
0Uh111gG/jYsG5tnk7gbipInJtaJoMmyR8seheB3LMgA40lNTJGEyZM8m83dwvVE
Pk5aYnWyAHyVLqX4oV8j2bB3qOKAHjuR4T4bKx4CzUZR/9B3wwTx1ovhEGtTOvWT
3jgGmA/74psloP9eh7S1F7G9nVk3mtfmH3ozaFGWQKzyPuy/PVxiExiPU5UpfSW2
WA29R1iUcjialQ4eDdyDWAAUls3FaqRKLYTsJLSGdlQAvqnTudHXXpi+TandpBWC
fjVt1d7AIUh+sUPvon6X+K8oemjPn0s7u4hc28iwHUASi+VtSSffY87ZvTW+/xmM
PDdCmFsRy4kWhZxxMIG3su73RSOFTzHFrEOgsGFUXvo22o0Qn3EzrSSfxg7W+CqZ
+QVOqlmJvI5HYGKM4vb/1+gof4MwV2592xXlbXSfhtp/HlFvCSsXAO6rqxO6beA6
YsG4jsb7hjAQrXxAFvwcc0gdLMNdYOeBneeMboAeyx9kcaPJKIl4tVq7i+H516CS
vfEOMgi0ofY=
=B1vH
-----END PGP SIGNATURE-----
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • FLEA-2007-0033-1: firefox thunderbird, Foresight Linux Essential Announcement Service <=
Previous by Date:  [Full-disclosure] Fast HTTP Auth Scanner, Andres Tarasco
Next by Date:  [Full-disclosure] Cisco Security Advisory: Wireless ARP Storm Vulnerabilities, Cisco Systems Product Security Incident Response Team
Previous by Thread:  [Full-disclosure] Fast HTTP Auth Scanner, Andres Tarasco
Next by Thread:  [Full-disclosure] Cisco Security Advisory: Wireless ARP Storm Vulnerabilities, Cisco Systems Product Security Incident Response Team
Indexes:  [Date] [Thread] [Top] [All Lists]