English | Deutsch | Español | Português
 UserID:
 Passwd:
new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   
    Search 143769 CVE descriptions
and 71225 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  


--------------------------------------------------------------------------
  Turbolinux Security Advisory TLSA-2002-22
  http://www/turbolinux.co.jp/security/
                                            security-team@turbolinux.co.jp
--------------------------------------------------------------------------

Mozilla

Leakage of local file

   Release date : 2002-05-15

   Object package : mozilla-1.0rc2-2

   Problem
    There is a possibility of unauthorized user acquiring the information of the XMLHttpRequest local file.

   Solution:
    Please verify version and execute the command below.
 
    # rpm -qa | grep package name

    When problem corresponds, please download the update package. Do the update  by the using the command below.
    Furthermore, please execute the package number which corresponds to your version number. Without starting a new paragraph, please enter the "\ " Bunchu sign.

    Execution example
    ---------------------------------------------------------------------
    # rpm -Fvh Package-1.0.0-1.i586.rpm \
    Package-doc-1.0.0-1.i586.rpm \
    Package-devel-1.0.0-1.i586.rpm

    The case where rpm command is executed, please enter as follows on the command line.

    # rpm -Fvh package-1.0.0-1.i586.rpm package-doc-1.0.0-1.i586.rpm package-devel-1.0.0-1.i586.rpm
    ---------------------------------------------------------------------

    < Turbolinux 7 Server >
    < Turbolinux 7 Workstation >
    When the nautilus-mozilla and the nautilus-suggested are installed, please do un installation.
    # rpm -qa | grep nautilus \
    When executing, if the nautilus-mozilla and the nautilus-suggested are indicated, it is already installed.
    # rpm -e nautilus-mozilla \
    nautilus-suggested

    In addition, please do the verification whether or not the galeon is installed.
    # rpm -qa | grep galeon \

    The galeon is not installed when
    # rpm -Uvh mozilla-1.0rc2-2.i586.rpm \
    mozilla-devel-1.0rc2-2.i586.rpm

    The galeon is installed when
    # rpm -Uvh mozilla-1.0rc2-2.i586.rpm \
    mozilla-devel-1.0rc2-2.i586.rpm \
    libxml-1.8.14-1.i586.rpm \
    libxml-devel-1.8.14-1.i586.rpm \
    galeon-1.2.1-1.i586.rpm

    < Turbolinux Server 6.5 >
    < Turbolinux Advanced Server 6 >
    < Turbolinux Server 6.1 >
    < Turbolinux Workstation 6.0 >

    If the mozilla package is not being recorded, it is not necessary to update.

Package updates: http://www.turbolinux.co.jp/update/

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  

 Forgot userid or passwd?
Email/Userid:




Home | About Us | Contact Us | Partner Programs | Developer APIs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe

© 1998-2019 E-Soft Inc. All rights reserved.