Red Hat released three critical security updates last night: RHSA-2007:0400, RHSA-2007:0401, and RHSA-2007:0402.
RHSA-2007:0400 Critical: firefox security update
This security update addresses several vulnerabilities in the Firefox package for Red Hat Enterprise Linux 4 and 5. A list of vulnerabilities is included in Table 1 below. The Red Hat Security Response Team has rated this update as having critical security impact. More information can be found on the Red Hat Network.
| CVE-2007-1362 CVE-2007-2869 | Several denial of service flaws were found in the way Firefox handled certain form and cookie data. A malicious web site that is able to set arbitrary form and cookie data could prevent Firefox from functioning properly. |
| CVE-2007-1562 | A flaw was found in the way Firefox handled certain FTP PASV commands. A malicious FTP server could use this flaw to perform a rudimentary port-scan of machines behind a user’s firewall. |
| CVE-2007-2867 CVE-2007-2868 | Several flaws were found in the way Firefox processed certain malformed JavaScript code. A web page containing malicious JavaScript code could cause Firefox to crash or potentially execute arbitrary code as the user running Firefox. |
| CVE-2007-2870 | A flaw was found in the way Firefox handled the addEventListener JavaScript method. A malicious web site could use this method to access or modify sensitive data from another web site. |
| CVE-2007-2871 | A flaw was found in the way Firefox displayed certain web content. A malicious web page could generate content that would overlay user interface elements such as the hostname and security indicators, tricking users into thinking they are visiting a different site. |
RHSA-2007:0401 Critical: thunderbird security update
This security update fixes several vulnerabilities in the Thunderbird package for Red Hat Enterprise Linux 4 and 5. A list of vulnerabilities is included in Table 2 below. The Red Hat Response Team has rated this update as having critical security impact. More information can be found on the Red Hat Network.
| CVE-2007-1362 CVE-2007-2869 | Several denial of service flaws were found in the way Thunderbird handled certain form and cookie data. A malicious web site that is able to set arbitrary form and cookie data could prevent Thunderbird from functioning properly. |
| CVE-2007-1558 | A flaw was found in the way Thunderbird processed certain APOP authentication requests. By sending certain responses when Thunderbird attempted to authenticate against an APOP server, a remote attacker could potentially acquire certain portions of a user’s authentication credentials. |
| CVE-2007-2867 CVE-2007-2868 | Several flaws were found in the way Thunderbird processed certain malformed JavaScript code. A web page containing malicious JavaScript code could cause Thunderbird to crash or potentially execute arbitrary code as the user running Thunderbird. |
| CVE-2007-2871 | A flaw was found in the way Thunderbird displayed certain web content. A malicious web page could generate content which could overlay user interface elements such as the hostname and security indicators, tricking users into thinking they are visiting a different site. |
RHSA-2007:0402 Critical: seamonkey security update
This security update addresses several vulnerabilities in the SeaMonkey package for Red Hat Enterprise Linux 2.1, 3, 4 and 5. A list of vulnerabilities is included in Table 3 below. The Red Hat Security Response Team has rated this update as having critical security impact. More information can be found on the Red Hat Network.
| CVE-2007-1362 CVE-2007-2869 | Several denial of service flaws were found in the way SeaMonkey handled certain form and cookie data. A malicious web site that is able to set arbitrary form and cookie data could prevent SeaMonkey from functioning properly. |
| CVE-2007-1558 | A flaw was found in the way SeaMonkey processed certain APOP authentication requests. By sending certain responses when SeaMonkey attempted to authenticate against an APOP server, a remote attacker could potentially acquire certain portions of a user’s authentication credentials. |
| CVE-2007-1562 | A flaw was found in the way SeaMonkey handled certain FTP PASV commands. A malicious FTP server could use this flaw to perform a rudimentary port-scan of machines behind a user’s firewall. |
| CVE-2007-2867 CVE-2007-2868 | Several flaws were found in the way SeaMonkey processed certain malformed JavaScript code. A web page containing malicious JavaScript code could cause SeaMonkey to crash or potentially execute arbitrary code as the user running SeaMonkey. |
| CVE-2007-2870 | A flaw was found in the way SeaMonkey handled the addEventListener JavaScript method. A malicious web site could use this method to access or modify sensitive data from another web site. |
| CVE-2007-2871 | A flaw was found in the way SeaMonkey displayed certain web content. A malicious web page could generate content that would overlay user interface elements such as the hostname and security indicators, tricking users into thinking they are visiting a different site. |
Get Slaptijack updates delivered to your Inbox or RSS Reader for free!