Release date:
Updated on:
Affected Systems:
Mozilla Firefox 3.x
Mozilla Thunderbird 3.x
Ubuntu 9.x
Ubuntu 8.x
Ubuntu 10.x
Mozilla SeaMonkey 2.x
Unaffected system:
Mozilla Firefox 4.0.1
Mozilla Firefox 4.0.
Mozilla Firefox 3.6.17
Mozilla Firefox 3.5.19
Mozilla Thunderbird 3.1.10
Mozilla SeaMonkey 2.0.14
Description:
--------------------------------------------------------------------------------
Bugtraq id: 47641,47653, 47657,47659, 47662,47663
Cve id: CVE-2011-0080, CVE-2011-0081, CVE-2011-0079, CVE-2011-0065, CVE-2011-0066
Firefox is a very popular open-source WEB browser. Thunderbird is a mail client that supports IMAP, POP protocol, and HTML format. SeaMonkey is an open-source Web browser, mail and newsgroup client, IRC session client, and HTML editor.
Mozilla Firefox, Thunderbird, and SeaMonkey have memory corruption vulnerabilities. Attackers can exploit these vulnerabilities to execute arbitrary code or cause DoS attacks in affected applications.
<* Source: Bob Clary
Mats Palmgren (mats.palmgren@bredband.net)
Jesee Ruderman
Henri Sivonen
Marco Bonardo
Scoobidiver
Regenrecht
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Mozilla
-------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.mozilla.org/