oval:org.mitre.oval:def:7681

Definition Id: oval:org.mitre.oval:def:7681

Oval ID:	oval:org.mitre.oval:def:7681
Title:	DSA-1574 icedove -- several vulnerabilities
Description:	Several remote vulnerabilities have been discovered in the Icedove mail client, an unbranded version of the Thunderbird client. The Common Vulnerabilities and Exposures project identifies the following problems: moz_bug_r_a4 discovered that variants of CVE-2007-3738 and CVE-2007-5338 allow the execution of arbitrary code through XPCNativeWrapper. moz_bug_r_a4 discovered that insecure handling of event handlers could lead to cross-site scripting. Boris Zbarsky, Johnny Stenback and moz_bug_r_a4 discovered that incorrect principal handling could lead to cross-site scripting and the execution of arbitrary code. Tom Ferris, Seth Spitzer, Martin Wargers, John Daggett and Mats Palmgren discovered crashes in the layout engine, which might allow the execution of arbitrary code. georgi, tgirmann and Igor Bukanov discovered crashes in the Javascript engine, which might allow the execution of arbitrary code.
Family:	unix	Class:	patch
Reference(s):	DSA-1574 CVE-2008-1233 CVE-2008-1234 CVE-2008-1235 CVE-2008-1236 CVE-2008-1237 CVE-2007-3738 CVE-2007-5338	Version:	3
Platform(s):	Debian GNU/Linux 4.0	Product(s):	icedove
Definition Synopsis:
Debian GNU/Linux 4.0 is installed. Architecture section Architecture independent section Installed architecture is all AND Packages section thunderbird-gnome-support is earlier than 1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1 AND thunderbird-dev is earlier than 1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1 AND mozilla-thunderbird is earlier than 1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1 AND thunderbird is earlier than 1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1 AND mozilla-thunderbird-dev is earlier than 1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1 AND mozilla-thunderbird-typeaheadfind is earlier than 1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1 AND thunderbird-dbg is earlier than 1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1 AND thunderbird-typeaheadfind is earlier than 1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1 AND mozilla-thunderbird-inspector is earlier than 1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1 AND thunderbird-inspector is earlier than 1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1 OR Architecture dependent section Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is alpha AND Installed architecture is powerpc AND Installed architecture is mipsel AND Installed architecture is hppa AND Packages section icedove-typeaheadfind is earlier than 1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1 AND icedove is earlier than 1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1 AND icedove-inspector is earlier than 1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1 AND icedove-dev is earlier than 1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1 AND icedove-dbg is earlier than 1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1 AND icedove-gnome-support is earlier than 1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1

Definition Id: oval:org.mitre.oval:def:6461

Oval ID:	oval:org.mitre.oval:def:6461
Title:	Debian GNU/Linux 4.0 is installed.
Description:	Debian GNU/Linux 4.0 (etch) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:4.0	Version:	9
Platform(s):	Debian GNU/Linux 4.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 4.0 is installed
Referenced By:
oval:org.mitre.oval:def:7681

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0272s

Facebook rss twitter linkedin mail