Detections
Analytics
openSUSE 10 Security Update : seamonkey (seamonkey-3986)
high Nessus Plugin ID 27444
Synopsis
The remote openSUSE host is missing a security update.Description
This update fixes several security issues in Mozilla SeaMonkey 1.0.9.Following security problems were fixed :
- MFSA 2007-18: Crashes with evidence of memory corruption
The usual collection of stability fixes for crashes that look suspicious but haven't been proven to be exploitable.
25 were in the browser engine, reported by Mozilla developers and community members Bernd Mielke, Boris Zbarsky, David Baron, Daniel Veditz, Jesse Ruderman, Lukas Loehrer, Martijn Wargers, Mats Palmgren, Olli Pettay, Paul Nickerson,and Vladimir Sukhoy (CVE-2007-3734)
7 were in the JavaScript engine reported by Asaf Romano, Jesse Ruderman, Igor Bukanov (CVE-2007-3735)
- MFSA 2007-19 / CVE-2007-3736: XSS using addEventListener and setTimeout
moz_bug_r_a4 reported that scripts could be injected into another site's context by exploiting a timing issue using addEventLstener or setTimeout.
- MFSA 2007-20 / CVE-2007-3089: frame spoofing
Ronen Zilberman and Michal Zalewski both reported that it was possible to exploit a timing issue to inject content into about:blank frames in a page.
- MFSA 2007-21 / CVE-2007-3737: Privilege escalation using an event handler attached to an element not in the document
Reported by moz_bug_r_a4.
- MFSA 2007-22 / CVE-2007-3285: File type confusion due to %00 in name
Ronald van den Heetkamp reported that a filename URL containing %00 (encoded null) can cause Firefox to interpret the file extension differently than the underlying Windows operating system potentially leading to unsafe actions such as running a program.
- MFSA 2007-23 / CVE-2007-3670: Remote code execution by launching Firefox from Internet Explorer
Greg MacManus of iDefense and Billy Rios of Verisign independently reported that links containing a quote (') character could be used in Internet Explorer to launch registered URL Protocol handlers with extra command-line parameters. Firefox and Thunderbird are among those which can be launched, and both support a '-chrome' option that could be used to run malware.
This problem does not affect Linux.
- MFSA 2007-24 / CVE-2007-3656: unauthorized access to wyciwyg:// documents
Michal Zalewski reported that it was possible to bypass the same-origin checks and read from cached (wyciwyg) documents
- MFSA 2007-25 / CVE-2007-3738: XPCNativeWrapper pollution
shutdown and moz_bug_r_a4 reported two separate ways to modify an XPCNativeWrapper such that subsequent access by the browser would result in executing user-supplied code.
Solution
Update the affected seamonkey packages.Plugin Details
Severity: High
ID: 27444
File Name: suse_seamonkey-3986.nasl
Version: 1.16
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 10/17/2007
Updated: 1/14/2021
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.0
CVSS v2
Risk Factor: High
Base Score: 9.3
Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: p-cpe:/a:novell:opensuse:seamonkey, p-cpe:/a:novell:opensuse:seamonkey-calendar, p-cpe:/a:novell:opensuse:seamonkey-dom-inspector, p-cpe:/a:novell:opensuse:seamonkey-irc, p-cpe:/a:novell:opensuse:seamonkey-mail, p-cpe:/a:novell:opensuse:seamonkey-spellchecker, p-cpe:/a:novell:opensuse:seamonkey-venkman, cpe:/o:novell:opensuse:10.1
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Patch Publication Date: 7/27/2007
Reference Information
CVE: CVE-2007-3089, CVE-2007-3285, CVE-2007-3656, CVE-2007-3670, CVE-2007-3734, CVE-2007-3735, CVE-2007-3736, CVE-2007-3737, CVE-2007-3738