Secunia - Stay Secure
Gartner
Home Corporate Website Jobs Updated Mailing Lists RSS Blog  Online Shop Advertise
Software Inspectors
  Scan Online
  Personal (PSI)
  Network (NSI 2.0)

Solutions For
  Security Professionals
  Security Vendors

Free Solutions For
  Open Communities
  Journalists & Media

Secunia Advisories
  Search
  Historic Advisories
  Listed By Product
  Listed By Vendor
  Statistics / Graphs
  Secunia Research
  Report Vulnerability
  About Advisories

Virus Information
  Chronological List
  Last 10 Virus Alerts
  About Virus Information

Secunia Customers
  Customer Area


SUSE updates for MozillaFirefox, MozillaThunderbird, and seamonkey Advisory Available in Danish 

Secunia Advisory: SA22056  
Release Date: 2006-09-25

Critical:
Highly critical
Impact: Security Bypass
Cross Site Scripting
Spoofing
DoS
System access
Where: From remote
Solution Status: Vendor Patch

OS:SUSE Linux 10
SUSE Linux 10.1
SUSE Linux 9.2
SUSE Linux 9.3


CVE reference:CVE-2006-4253 (Secunia mirror)
CVE-2006-4340 (Secunia mirror)
CVE-2006-4565 (Secunia mirror)
CVE-2006-4566 (Secunia mirror)
CVE-2006-4567 (Secunia mirror)
CVE-2006-4568 (Secunia mirror)
CVE-2006-4569 (Secunia mirror)
CVE-2006-4570 (Secunia mirror)
CVE-2006-4571 (Secunia mirror)

Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS!


Description:
SUSE has issued updates for MozillaFirefox, MozillaThunderbird, and seamonkey. These fix some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct man-in-the-middle, spoofing, and cross-site scripting attacks, and potentially compromise a user's system.

For more information:
SA21906
SA21939
SA21940

Solution:
Apply updated packages.

x86 Platform:

SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10...6/MozillaFirefox-1.5.0.7-1.2.i586.rpm
c2241c461583cb54da9444aa13513da8
ftp://ftp.suse.com/pub/suse/update/10...fox-translations-1.5.0.7-1.2.i586.rpm
cede57cc709d100a17747f87fbc8f02b
ftp://ftp.suse.com/pub/suse/update/10...zillaThunderbird-1.5.0.7-0.1.i586.rpm
28bba6b62a42895ccd6df331a7926500
ftp://ftp.suse.com/pub/suse/update/10...ird-translations-1.5.0.7-0.1.i586.rpm
acee42b344e5e3a367d243aa417c12b3
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/seamonkey-1.0.5-1.1.i586.rpm
75af4685ab07ddd80d95ff2b6f8fceef
ftp://ftp.suse.com/pub/suse/update/10...seamonkey-calendar-1.0.5-1.1.i586.rpm
5b25c1e00032672ec95245b9cb0dcf8a
ftp://ftp.suse.com/pub/suse/update/10...nkey-dom-inspector-1.0.5-1.1.i586.rpm
430729d03b65c87f882d1e2997d316a8
ftp://ftp.suse.com/pub/suse/update/10...i586/seamonkey-irc-1.0.5-1.1.i586.rpm
d1f2779e225937c360cd9c68a583fc37
ftp://ftp.suse.com/pub/suse/update/10...586/seamonkey-mail-1.0.5-1.1.i586.rpm
a471c1ded619519aa9ecbc9890a9382c
ftp://ftp.suse.com/pub/suse/update/10...onkey-spellchecker-1.0.5-1.1.i586.rpm
17dc992659486f8216549fc39cda55bd
ftp://ftp.suse.com/pub/suse/update/10.../seamonkey-venkman-1.0.5-1.1.i586.rpm
88678b6dfda08966bb9994f081804b0c

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/upda...6/MozillaFirefox-1.5.0.7-1.1.i586.rpm
e6d74190437f49b0fc5276f6b856b67e
ftp://ftp.suse.com/pub/suse/i386/upda...fox-translations-1.5.0.7-1.1.i586.rpm
225f846874b32245b23492d51bc077b3
ftp://ftp.suse.com/pub/suse/i386/upda...zillaThunderbird-1.5.0.7-0.1.i586.rpm
39371eb2f03f8f90a4e8ffc4f29a182c

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/upda...6/MozillaFirefox-1.5.0.7-1.1.i586.rpm
746a56a6aa9402287d7c0f054989689c
ftp://ftp.suse.com/pub/suse/i386/upda...fox-translations-1.5.0.7-1.1.i586.rpm
5ef6019c2a3b149e84073a699c178b27
ftp://ftp.suse.com/pub/suse/i386/upda...zillaThunderbird-1.5.0.7-0.1.i586.rpm
05b9588e09dccfcc8e4b5320398ebd07

SUSE LINUX 9.2:
ftp://ftp.suse.com/pub/suse/i386/upda...6/MozillaFirefox-1.5.0.7-1.1.i586.rpm
653f774d37b664ce97ecbb31bdca9041
ftp://ftp.suse.com/pub/suse/i386/upda...fox-translations-1.5.0.7-1.1.i586.rpm
dc8d989574b91fca7cc6d294469330e7
ftp://ftp.suse.com/pub/suse/i386/upda...zillaThunderbird-1.5.0.7-0.1.i586.rpm
5e96afa8a01e9c487e46cfb144cea474

Power PC Platform:

SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10...pc/MozillaFirefox-1.5.0.7-1.2.ppc.rpm
c81caccf49c06e060b095c50c9241212
ftp://ftp.suse.com/pub/suse/update/10...efox-translations-1.5.0.7-1.2.ppc.rpm
53e3e3acf042ccf76882d27bfd0b1bb8
ftp://ftp.suse.com/pub/suse/update/10...ozillaThunderbird-1.5.0.7-0.1.ppc.rpm
3fb66e6bce779781cb25175f4ba029ed
ftp://ftp.suse.com/pub/suse/update/10...bird-translations-1.5.0.7-0.1.ppc.rpm
d69cd7b2f1853b84a1f64f1187196f8e
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/seamonkey-1.0.5-1.1.ppc.rpm
5d81db21ab3ff65e2da8f7c7834c9dd7
ftp://ftp.suse.com/pub/suse/update/10.../seamonkey-calendar-1.0.5-1.1.ppc.rpm
195fe45f87de1625191df8fe9b56216a
ftp://ftp.suse.com/pub/suse/update/10...onkey-dom-inspector-1.0.5-1.1.ppc.rpm
d797584d1507df5cee459ae52025ae4f
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/seamonkey-irc-1.0.5-1.1.ppc.rpm
ac452dc31a45124129faca0b7a289881
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/seamonkey-mail-1.0.5-1.1.ppc.rpm
213ee0051aabeb1606128fdf031f87ec
ftp://ftp.suse.com/pub/suse/update/10...monkey-spellchecker-1.0.5-1.1.ppc.rpm
7200d9d8f6de89125c12c18fb082ff92
ftp://ftp.suse.com/pub/suse/update/10...c/seamonkey-venkman-1.0.5-1.1.ppc.rpm
0e51a3e3b0ea39f951bf146db8316995

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/upda...pc/MozillaFirefox-1.5.0.7-1.1.ppc.rpm
c18441b3b260aeb26445bc6f514d76cf
ftp://ftp.suse.com/pub/suse/i386/upda...efox-translations-1.5.0.7-1.1.ppc.rpm
22c3c4e9102e35bdcdccc9970bb8e86b
ftp://ftp.suse.com/pub/suse/i386/upda...ozillaThunderbird-1.5.0.7-0.1.ppc.rpm
a27cfdf5824fe2155215806c3e48ef01

x86-64 Platform:

SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10...llaThunderbird-1.5.0.7-0.1.x86_64.rpm
c8f0e029fd901c0ee4b792e657534094
ftp://ftp.suse.com/pub/suse/update/10...d-translations-1.5.0.7-0.1.x86_64.rpm
6adbd489c023501639fd417844a4af6f
ftp://ftp.suse.com/pub/suse/update/10...x86_64/seamonkey-1.0.5-1.1.x86_64.rpm
3134380adefa0d0eef28ceaea0feefa3
ftp://ftp.suse.com/pub/suse/update/10...amonkey-calendar-1.0.5-1.1.x86_64.rpm
9264ba5a10f98dc9c4bc6b6bb3f948c9
ftp://ftp.suse.com/pub/suse/update/10...ey-dom-inspector-1.0.5-1.1.x86_64.rpm
2391b23a49e8044025feeba96f3c98aa
ftp://ftp.suse.com/pub/suse/update/10...64/seamonkey-irc-1.0.5-1.1.x86_64.rpm
6e6de01bba861db89ae1cef20423f99b
ftp://ftp.suse.com/pub/suse/update/10...4/seamonkey-mail-1.0.5-1.1.x86_64.rpm
d54a8f88541d6809b55510899ad60e9c
ftp://ftp.suse.com/pub/suse/update/10...key-spellchecker-1.0.5-1.1.x86_64.rpm
fd6847218166c1f3175fe5197d057340
ftp://ftp.suse.com/pub/suse/update/10...eamonkey-venkman-1.0.5-1.1.x86_64.rpm
36bff38cd92af4b4759805498c9f26fc

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/upda...llaThunderbird-1.5.0.7-0.1.x86_64.rpm
21dd3f6e951b6a26b423fef4446049a9

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/upda...llaThunderbird-1.5.0.7-0.1.x86_64.rpm
29a0d99e40b423720c412778f9c348c2

SUSE LINUX 9.2:
ftp://ftp.suse.com/pub/suse/i386/upda...MozillaFirefox-1.5.0.7-1.1.x86_64.rpm
d9373f704a849e401296a6ce1029af8e
ftp://ftp.suse.com/pub/suse/i386/upda...x-translations-1.5.0.7-1.1.x86_64.rpm
95e941405253b750c712008f8ede371e
ftp://ftp.suse.com/pub/suse/i386/upda...llaThunderbird-1.5.0.7-0.1.x86_64.rpm
db25bb261cefcc722e349450190ac0dc

Sources:

SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10...rc/MozillaFirefox-1.5.0.7-1.2.src.rpm
a84a3ced8c0f7c3222cc3ab76e51a2d9
ftp://ftp.suse.com/pub/suse/update/10...ozillaThunderbird-1.5.0.7-0.1.src.rpm
63cb05e759521c36b28ca86b95e3008b
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/seamonkey-1.0.5-1.1.src.rpm
d5c0667bc7ac9899e5d083335259de32

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/upda...rc/MozillaFirefox-1.5.0.7-1.1.src.rpm
9081b907a933f4112b1dea8501c5be8c
ftp://ftp.suse.com/pub/suse/i386/upda...ozillaThunderbird-1.5.0.7-0.1.src.rpm
0af702b1eac30f7413b7959e08d92f4f

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/upda...rc/MozillaFirefox-1.5.0.7-1.1.src.rpm
2cb13934696dc77c4a92cf6e51cb3947
ftp://ftp.suse.com/pub/suse/i386/upda...ozillaThunderbird-1.5.0.7-0.1.src.rpm
70b0ce0a6abc740bb3b7564ee8d95de4

SUSE LINUX 9.2:
ftp://ftp.suse.com/pub/suse/i386/upda...rc/MozillaFirefox-1.5.0.7-1.1.src.rpm
c56ba0432ded361fe09e7e12fec9ff48
ftp://ftp.suse.com/pub/suse/i386/upda...ozillaThunderbird-1.5.0.7-0.1.src.rpm
56770bca1157d6e43e21ecd4fddcad51

Original Advisory:
http://lists.suse.com/archive/suse-security-announce/2006-Sep/0008.html

Other References:
SA21906:
http://secunia.com/advisories/21906/

SA21939:
http://secunia.com/advisories/21939/

SA21940:
http://secunia.com/advisories/21940/



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

327 Related Secunia Security Advisories, displaying 10

1. SUSE Update for Multiple Packages
2. SUSE Update for Multiple Packages
3. SUSE update for samba
4. SUSE Update for Multiple Packages
5. SUSE Update for Multiple Packages
6. SUSE update for OpenOffice_org
7. SUSE update for clamav
8. SUSE update for flash-player
9. SUSE update for openssh and opera
10. SUSE update for cups

Show all related advisories


Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.








Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Do you think it's important to read Setup/User Guides for applications for use within your network?


See Results   


Most Popular Advisories

1.
AJ E-Commerce "cid" SQL Injection Vulnerability
2.
PostNuke pnFlashGames Module "cid" SQL Injection
3.
VP-ASP Shopping Cart "cid" SQL Injection Vulnerability
4.
X11 libXfont CID Encoded Fonts Integer Overflows
5.
PHP-Nuke "pollID" Parameter SQL Injection Vulnerability
6.
BlackBerry Enterprise Server PDF Processing Vulnerability
7.
Sun Solaris System Management Agent SNMP Daemon Buffer Overflow
8.
AlstraSoft Video Share Enterprise "UID" SQL Injection
9.
Vim configure.in Insecure Temporary Files
10.
MyBB Multiple Vulnerabilities





Vulnerability Management - Terms & Conditions - Copyright 2002-2008 Secunia - Compliance - Contact Secunia