USN-582-1 fixed several vulnerabilities in Thunderbird The upstream
fixes were incomplete, and after performing certain actions Thunderbird
would crash due to memory errors This update fixes the problem ...
Various flaws were discovered in the browser and JavaScript engine
By tricking a user into opening a malicious web page, an attacker
could execute arbitrary code with the user’s privileges
(CVE-2008-0412, CVE-2008-0413) ...
It was discovered that Thunderbird did not properly set the size of a
buffer when parsing an external-body MIME-type If a user were to open
a specially crafted email, an attacker could cause a denial of service
via application crash or possibly execute arbitrary code as the user
(CVE-2008-0304) ...
Several remote vulnerabilities have been discovered in Xulrunner, a
runtime environment for XUL applications The Common Vulnerabilities and
Exposures project identifies the following problems:
CVE-2008-0412
Jesse Ruderman, Kai Engert, Martijn Wargers, Mats Palmgren and Paul
Nickerson discovered crashes in the layout engine, which might al ...
Several remote vulnerabilities have been discovered in the Icedove mail
client, an unbranded version of the Thunderbird client The Common
Vulnerabilities and Exposures project identifies the following problems:
CVE-2008-0412
Jesse Ruderman, Kai Engert, Martijn Wargers, Mats Palmgren and Paul
Nickerson discovered crashes in the layout engi ...
Several remote vulnerabilities have been discovered in the Iceape internet
suite, an unbranded version of the Seamonkey Internet Suite The Common
Vulnerabilities and Exposures project identifies the following problems:
CVE-2008-0412
Jesse Ruderman, Kai Engert, Martijn Wargers, Mats Palmgren and Paul
Nickerson discovered crashes in the lay ...
Several remote vulnerabilities have been discovered in the Iceweasel
web browser, an unbranded version of the Firefox browser The Common
Vulnerabilities and Exposures project identifies the following problems:
CVE-2008-0412
Jesse Ruderman, Kai Engert, Martijn Wargers, Mats Palmgren and Paul
Nickerson discovered crashes in the layout engin ...
Mozilla Foundation Security Advisory 2008-05
Directory traversal via chrome: URI
Announced
February 7, 2008
Reporter
Gerry Eisenhaur
Impact
High
Products
Firefox, SeaMonkey, Thunderbird
Fixed in
...