Lucene search
GoogleOSV:DSA-1227-1HistoryDec 04, 2006 - 12:00 a.m.
mozilla-thunderbird
2006-12-0400:00:00
Google
osv.dev
16
EPSS
0.46
Percentile
97.5%
Several security related problems have been discovered in Mozilla and
derived products such as Mozilla Thunderbird. The Common Vulnerabilities
and Exposures project identifies the following vulnerabilities:
- CVE-2006-4310
Tomas Kempinsky discovered that malformed FTP server responses
could lead to denial of service. - CVE-2006-5462
Ulrich KΔΕΊhn discovered that the correction for a cryptographic
flaw in the handling of PKCS-1 certificates was incomplete, which
allows the forgery of certificates. - CVE-2006-5463
shutdown discovered that modification of JavaScript objects
during execution could lead to the execution of arbitrary
JavaScript bytecode. - CVE-2006-5464
Jesse Ruderman and Martijn Wargers discovered several crashes in
the layout engine, which might also allow execution of arbitrary
code. - CVE-2006-5748
Igor Bukanov and Jesse Ruderman discovered several crashes in the
JavaScript engine, which might allow execution of arbitrary code.
This update also addresses several crashes, which could be triggered by
malicious websites and fixes a regression introduced in the previous
Mozilla update.
For the stable distribution (sarge) these problems have been fixed in
version 1.0.4-2sarge13.
For the unstable distribution (sid) these problems have been fixed in
the current icedove package 1.5.0.8.
We recommend that you upgrade your mozilla-thunderbird package.
References
Related
openvas
openvas
Debian Security Advisory DSA 1225-1 (mozilla-firefox)
2008-01-17 00:00:00
Debian Security Advisory DSA 1224-1 (mozilla)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-1225-1)
2008-01-17 00:00:00
debian
debian
nessus
nessus
Debian DSA-1227-1 : mozilla-thunderbird - several vulnerabilities
2006-12-04 00:00:00
Debian DSA-1225-2 : mozilla-firefox - several vulnerabilities
2006-12-04 00:00:00
Debian DSA-1224-1 : mozilla - several vulnerabilities
2006-12-04 00:00:00
osv
osv
mozilla-firefox
2006-12-03 00:00:00
mozilla
2006-12-03 00:00:00
centos
centos
firefox security update
2006-11-09 21:11:25
devhelp, seamonkey security update
2006-11-09 02:25:34
thunderbird security update
2006-11-09 21:51:03
redhat
redhat
(RHSA-2006:0734) Critical: seamonkey security update
2006-11-08 00:00:00
(RHSA-2006:0735) Critical: thunderbird security update
2006-11-08 00:00:00
(RHSA-2006:0733) Critical: firefox security update
2006-11-07 00:00:00
gentoo
gentoo
Mozilla Firefox: Multiple vulnerabilities
2006-12-10 00:00:00
Mozilla Thunderbird: Multiple vulnerabilities
2006-12-10 00:00:00
SeaMonkey: Multiple vulnerabilities
2006-12-10 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2006-11-21 00:00:00
Firefox vulnerabilities
2006-11-21 00:00:00
oraclelinux
oraclelinux
Critical thunderbird security update
2006-12-07 00:00:00
Critical firefox security update
2006-12-07 00:00:00
Critical seamonkey security update
2006-12-07 00:00:00
suse
suse
remote denial of service in MozillaFirefox,MozillaThunderbird,seamonkey
2006-11-16 19:09:31
mozilla
mozilla
Crashes with evidence of memory corruption (rv:1.8.0.8) β Mozilla
2006-11-07 00:00:00
Running Script can be recompiled β Mozilla
2006-11-07 00:00:00
RSA Signature Forgery (variant) β Mozilla
2006-11-07 00:00:00
cert
cert
Mozilla products allow execution of arbitrary JavaScript
2006-11-08 00:00:00
Mozilla products vulnerable to memory corruption
2006-11-08 00:00:00
cvelist
cvelist
ubuntucve
ubuntucve
debiancve
debiancve
nvd
nvd
veracode
veracode
Remote Code Execution (RCE)
2020-04-10 00:12:15
Denial Of Service (DoS)
2020-04-10 00:12:15
Denial Of Service (DoS)
2020-04-10 00:12:17
cve
cve
redhatcve
redhatcve
CVE-2006-4310
2015-10-30 09:23:15