Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.55477
Category:Fedora Local Security Checks
Title:Fedora Core 4 FEDORA-2005-963 (thunderbird)
Summary:NOSUMMARY
Description:Description:

The remote host is missing an update to thunderbird
announced via advisory FEDORA-2005-963.

An updated thunderbird package that fixes various bugs is
now available for Fedora Core 4. For details, please visit
the referenced security advisories.

Users of Thunderbird are advised to upgrade to this updated
package that contains Thunderbird version 1.0.7 and is not
vulnerable to these issues.
* Thu Sep 29 2005 Christopher Aillon 1.0.7-1.1.fc4
- Update to 1.0.7, containing fixes for:
CVE-2005-2701 CVE-2005-2702 CVE-2005-2703 CVE-2005-2704
CVE-2005-2705 CVE-2005-2706 CVE-2005-2707 CVE-2005-2968
CVE-2005-2871

Solution: Apply the appropriate updates.

This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/

This update can also be installed with the Update Agent
you can
launch the Update Agent with the 'up2date' command.

https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2005-963

Risk factor : High

CVSS Score:
7.5

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2005-2871
BugTraq ID: 14784
http://www.securityfocus.com/bid/14784
CERT/CC vulnerability note: VU#573857
http://www.kb.cert.org/vuls/id/573857
Computer Incident Advisory Center Bulletin: P-303
http://www.ciac.org/ciac/bulletins/p-303.shtml
Debian Security Information: DSA-837 (Google Search)
http://www.debian.org/security/2005/dsa-837
Debian Security Information: DSA-866 (Google Search)
http://www.debian.org/security/2005/dsa-866
Debian Security Information: DSA-868 (Google Search)
http://www.debian.org/security/2005/dsa-868
http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00004.html
http://marc.info/?l=full-disclosure&m=112624614008387&w=2
http://archives.neohapsis.com/archives/fulldisclosure/2005-09/0316.html
http://www.gentoo.org/security/en/glsa/glsa-200509-11.xml
HPdes Security Advisory: HPSBUX01133
HPdes Security Advisory: SSRT5940
http://www.mandriva.com/security/advisories?name=MDKSA-2005:174
http://www.securiteam.com/securitynews/5RP0B0UGVW.html
http://www.security-protocols.com/advisory/sp-x17-advisory.txt
http://www.security-protocols.com/firefox-death.html
http://www.osvdb.org/19255
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1287
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A584
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9608
http://www.redhat.com/support/errata/RHSA-2005-768.html
http://www.redhat.com/support/errata/RHSA-2005-769.html
http://www.redhat.com/support/errata/RHSA-2005-791.html
http://securitytracker.com/id?1014877
http://secunia.com/advisories/16764
http://secunia.com/advisories/16766
http://secunia.com/advisories/16767
http://secunia.com/advisories/17042
http://secunia.com/advisories/17090
http://secunia.com/advisories/17263
http://secunia.com/advisories/17284
http://securityreason.com/securityalert/83
http://www.ubuntu.com/usn/usn-181-1
http://www.vupen.com/english/advisories/2005/1690
http://www.vupen.com/english/advisories/2005/1691
http://www.vupen.com/english/advisories/2005/1824
XForce ISS Database: mozilla-url-bo(22207)
https://exchange.xforce.ibmcloud.com/vulnerabilities/22207
Common Vulnerability Exposure (CVE) ID: CVE-2005-2702
BugTraq ID: 14918
http://www.securityfocus.com/bid/14918
BugTraq ID: 15495
http://www.securityfocus.com/bid/15495
Debian Security Information: DSA-838 (Google Search)
http://www.debian.org/security/2005/dsa-838
http://www.mandriva.com/security/advisories?name=MDKSA-2005:169
http://www.mandriva.com/security/advisories?name=MDKSA-2005:170
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1150
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11609
http://www.redhat.com/support/errata/RHSA-2005-785.html
http://www.redhat.com/support/errata/RHSA-2005-789.html
SCO Security Bulletin: SCOSA-2005.49
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt
http://securitytracker.com/id?1014954
http://secunia.com/advisories/16911
http://secunia.com/advisories/16917
http://secunia.com/advisories/16977
http://secunia.com/advisories/17014
http://secunia.com/advisories/17026
http://secunia.com/advisories/17149
SuSE Security Announcement: SUSE-SA:2005:058 (Google Search)
http://www.novell.com/linux/security/advisories/2005_58_mozilla.html
http://www.ubuntu.com/usn/usn-200-1
XForce ISS Database: mozilla-zerowidthnonjoiner-stack-corruption(22375)
https://exchange.xforce.ibmcloud.com/vulnerabilities/22375
Common Vulnerability Exposure (CVE) ID: CVE-2005-2703
BugTraq ID: 14923
http://www.securityfocus.com/bid/14923
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10767
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1089
XForce ISS Database: mozilla-xmlhttprequest-spoofing(22376)
https://exchange.xforce.ibmcloud.com/vulnerabilities/22376
Common Vulnerability Exposure (CVE) ID: CVE-2005-2704
BugTraq ID: 14921
http://www.securityfocus.com/bid/14921
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1272
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9784
XForce ISS Database: mozilla-thunderbird-xml-object-spoof(22824)
https://exchange.xforce.ibmcloud.com/vulnerabilities/22824
Common Vulnerability Exposure (CVE) ID: CVE-2005-2705
BugTraq ID: 14917
http://www.securityfocus.com/bid/14917
https://bugzilla.mozilla.org/show_bug.cgi?id=303213
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10367
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1307
XForce ISS Database: mozilla-javascript-bo(22377)
https://exchange.xforce.ibmcloud.com/vulnerabilities/22377
Common Vulnerability Exposure (CVE) ID: CVE-2005-2706
BugTraq ID: 14920
http://www.securityfocus.com/bid/14920
http://www.osvdb.org/19648
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11317
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1443
http://secunia.com/advisories/19823
SuSE Security Announcement: SUSE-SA:2006:022 (Google Search)
http://www.novell.com/linux/security/advisories/2006_04_25.html
XForce ISS Database: mozilla-about-execute-code(22378)
https://exchange.xforce.ibmcloud.com/vulnerabilities/22378
Common Vulnerability Exposure (CVE) ID: CVE-2005-2707
BugTraq ID: 14919
http://www.securityfocus.com/bid/14919
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11130
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1197
XForce ISS Database: mozilla-chrome-window-spoofing(22380)
https://exchange.xforce.ibmcloud.com/vulnerabilities/22380
Common Vulnerability Exposure (CVE) ID: CVE-2005-2968
BugTraq ID: 14888
http://www.securityfocus.com/bid/14888
CERT/CC vulnerability note: VU#914681
http://www.kb.cert.org/vuls/id/914681
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11105
http://secunia.com/advisories/16869
http://www.ubuntu.com/usn/usn-186-1
http://www.ubuntu.com/usn/usn-186-2
http://www.vupen.com/english/advisories/2005/1794
Common Vulnerability Exposure (CVE) ID: CVE-2005-2701
BugTraq ID: 14916
http://www.securityfocus.com/bid/14916
http://www.osvdb.org/19643
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1480
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9323
XForce ISS Database: mozilla-xbm-bo(22373)
https://exchange.xforce.ibmcloud.com/vulnerabilities/22373
CopyrightCopyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.