NASLDB: Debian DSA-1401-1 : iceape - several vulnerabilities
General
ID: 27630
Name: Debian DSA-1401-1 : iceape – several vulnerabilities
Summary: Checks dpkg output for the updated package
Credits: –
Classification
Risk: –
CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS Temporal Vector: –
Port: 0
Family: Debian Local Security Checks
Type: Local
Description
Several remote vulnerabilities have been discovered in the Iceape
internet suite, an unbranded version of the Seamonkey Internet Suite.
The Common Vulnerabilities and Exposures project identifies the
following problems :
– CVE-2007-1095
Michal Zalewski discovered that the unload event handler
had access to the address of the next page to be loaded,
which could allow information disclosure or spoofing.
– CVE-2007-2292
Stefano Di Paola discovered that insufficient validation
of user names used in Digest authentication on a web
site allows HTTP response splitting attacks.
– CVE-2007-3511
It was discovered that insecure focus handling of the
file upload control can lead to information disclosure.
This is a variant of CVE-2006-2894.
– CVE-2007-5334
Eli Friedman discovered that web pages written in Xul
markup can hide the titlebar of windows, which can lead
to spoofing attacks.
– CVE-2007-5337
Georgi Guninski discovered the insecure handling of
smb:// and sftp:// URI schemes may lead to information
disclosure. This vulnerability is only exploitable if
Gnome-VFS support is present on the system.
– CVE-2007-5338
‘moz_bug_r_a4’ discovered that the protection scheme
offered by XPCNativeWrappers could be bypassed, which
might allow privilege escalation.
– CVE-2007-5339
L. David Baron, Boris Zbarsky, Georgi Guninski, Paul
Nickerson, Olli Pettay, Jesse Ruderman, Vladimir Sukhoy,
Daniel Veditz, and Martijn Wargers discovered crashes in
the layout engine, which might allow the execution of
arbitrary code.
– CVE-2007-5340
Igor Bukanov, Eli Friedman, and Jesse Ruderman
discovered crashes in the JavaScript engine, which might
allow the execution of arbitrary code.
The Mozilla products in the oldstable distribution (sarge) are no
longer supported with security updates.
Exploiting
Exploit Available: –
Exploitability Ease: –
Sources
CVE: CVE-2007-1095
OSVDB: –
Bugtraq: –
scipID: –
Timeline
Vulnerability Disclosure: –
Patch Release: 2007/11/05
Plugin Release: 2007/11/06
Plugin
Version: 1.10
Filename: debian_DSA-1401.nasl
Filesize: 7410 bytes
MD5 Hash: 48c0b3871e7d3ce21d272a67e69982f4
Identification: Host/local_checks_enabled
Require Keys: Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l
Dependencies: "ssh_get_info.nasl"
Copyright: This script is© 2007-2012 Tenable Network Security, Inc.
- Latest Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack