Denial of Service : Mozilla Products Denial Of Service Vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.902143

Categoría: Denial of Service

Título: Mozilla Products Denial Of Service Vulnerability - Linux

Resumen: Thunderbird/Seamonkey is prone to a denial of service (DoS) vulnerability.

Descripción: Summary:
Thunderbird/Seamonkey is prone to a denial of service (DoS) vulnerability.

Vulnerability Insight:
The flaw exists when processing e-mail attachments with a parser that performs
casts and line termination incorrectly, which allows remote attackers to crash the application.

Vulnerability Impact:
Successful exploitation will allow attackers to cause a denial of service
or possibly execute arbitrary code via a crafted message, related to message indexing.

Affected Software/OS:
Seamonkey version prior to 1.1.19 and

Thunderbird version prior to 2.0.0.24 on Linux.

Solution:
Upgrade to Seamonkey version 1.1.19 or later

Upgrade to Thunderbird version 2.0.0.24 or later

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-0163
BugTraq ID: 38831
http://www.securityfocus.com/bid/38831
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10805
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14259
http://www.redhat.com/support/errata/RHSA-2010-0499.html
http://secunia.com/advisories/38977
http://secunia.com/advisories/39001
SuSE Security Announcement: SUSE-SR:2010:013 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html
http://www.ubuntu.com/usn/USN-915-1
http://www.vupen.com/english/advisories/2010/0648
http://www.vupen.com/english/advisories/2010/1556
XForce ISS Database: thunderbird-messages-dos(56993)
https://exchange.xforce.ibmcloud.com/vulnerabilities/56993

Copyright Copyright (C) 2010 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.902143
Categoría:	Denial of Service
Título:	Mozilla Products Denial Of Service Vulnerability - Linux
Resumen:	Thunderbird/Seamonkey is prone to a denial of service (DoS) vulnerability.
Descripción:	Summary: Thunderbird/Seamonkey is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: The flaw exists when processing e-mail attachments with a parser that performs casts and line termination incorrectly, which allows remote attackers to crash the application. Vulnerability Impact: Successful exploitation will allow attackers to cause a denial of service or possibly execute arbitrary code via a crafted message, related to message indexing. Affected Software/OS: Seamonkey version prior to 1.1.19 and Thunderbird version prior to 2.0.0.24 on Linux. Solution: Upgrade to Seamonkey version 1.1.19 or later Upgrade to Thunderbird version 2.0.0.24 or later CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0163 BugTraq ID: 38831 http://www.securityfocus.com/bid/38831 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10805 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14259 http://www.redhat.com/support/errata/RHSA-2010-0499.html http://secunia.com/advisories/38977 http://secunia.com/advisories/39001 SuSE Security Announcement: SUSE-SR:2010:013 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html http://www.ubuntu.com/usn/USN-915-1 http://www.vupen.com/english/advisories/2010/0648 http://www.vupen.com/english/advisories/2010/1556 XForce ISS Database: thunderbird-messages-dos(56993) https://exchange.xforce.ibmcloud.com/vulnerabilities/56993
Copyright	Copyright (C) 2010 Greenbone AG