• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Mozilla Firefox/SeaMonkey/Thunderbird Multiple Remote Vulnerabilities

References:

• Security Advisories for Firefox 3.0 (Mozilla Foundation)
  
• ASA-2008-421 seamonkey security update (RHSA-2008-0882) (Avaya)
  
• ASA-2008-422 firefox security update (RHSA-2008-0879) (Avaya)
  
• ASA-2009-158 - Multiple Security Vulnerabilities in Firefox Versions Before 2.0. (Avaya)
  
• ASA-2009-398 MS09-047 Vulnerabilities in Windows Media Format Could Allow Remote (Avaya)
  
• MFSA 2008-38 - nsXMLDocument::OnChannelRedirect() same-origin violation (Mozilla Foundation)
  
• MFSA 2008-39 - Privilege escalation using feed preview page and XSS flaw (Mozilla Foundation)
  
• MFSA 2008-40 - Forced mouse drag (Mozilla Foundation)
  
• MFSA 2008-41 - Privilege escalation via XPCnativeWrapper pollution (Mozilla Foundation)
  
• MFSA 2008-42 - Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17) (Mozilla Foundation)
  
• MFSA 2008-43 - BOM characters, low surrogates stripped from JavaScript before ex (Mozilla Foundation)
  
• MFSA 2008-44 - resource: traversal vulnerabilities (Mozilla Foundation)
  
• MFSA 2008-45 - XBM image uninitialized memory reading (Mozilla Foundation)
  
• MozillaFirefox 20080929 (Novell)
  
• Nortel Response to Sun Alert 256408 - Solaris 10 - Vulnerabilities in Firefox Ma (Nortel Networks)