• info
• discussion
• exploit
• solution
• references

Mozilla Firefox/Thunderbird/SeaMonkey HTML Parser Remote Code Execution Vulnerability

Solution:
Updates are available. Please see the references for more information.


Slackware Linux 12.2

• Slackware mozilla-firefox-3.0.18-i686-1.tgz
  ftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/ mozilla-firefox-3.0.18-i686-1.tgz


• Slackware seamonkey-2.0.3-i486-1_slack12.2.tgz
  ftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/ seamonkey-2.0.3-i486-1_slack12.2.tgz

Mandriva Linux Mandrake 2008.0

• Mandriva mozilla-thunderbird-2.0.0.23-1.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/

S.u.S.E. openSUSE 11.0

• SuSE mozilla-xulrunner190-1.9.0.18-0.1.i586.rpm
  http://download.opensuse.org/update/11.0/rpm/i586/mozilla-xulrunner190 -1.9.0.18-0.1.i586.rpm


• SuSE mozilla-xulrunner190-translations-1.9.0.18-0.1.i586.rpm
  http://download.opensuse.org/update/11.0/rpm/i586/mozilla-xulrunner190 -translations-1.9.0.18-0.1.i586.rpm


• SuSE mozilla-xulrunner190-translations-1.9.0.18-0.1.ppc.rpm
  http://download.opensuse.org/update/11.0/rpm/ppc/mozilla-xulrunner190- translations-1.9.0.18-0.1.ppc.rpm


• SuSE MozillaFirefox-translations-3.0.18-0.1.ppc.rpm
  http://download.opensuse.org/update/11.0/rpm/ppc/MozillaFirefox-transl ations-3.0.18-0.1.ppc.rpm

Slackware Linux x86_64 -current

• Slackware seamonkey-2.0.3-x86_64-1.txz
  ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/ xap/seamonkey-2.0.3-x86_64-1.txz


• Slackware seamonkey-solibs-2.0.3-x86_64-1.txz
  ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/ l/seamonkey-solibs-2.0.3-x86_64-1.txz

Mandriva Linux Mandrake 2009.1 x86_64

• Mandriva mozilla-thunderbird-2.0.0.23-0.4mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva mozilla-thunderbird-devel-2.0.0.23-0.4mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva mozilla-thunderbird-enigmail-2.0.0.23-0.4mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva nsinstall-2.0.0.23-0.4mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/

S.u.S.E. openSUSE 11.1

• SuSE mozilla-xulrunner190-debugsource-1.9.0.18-0.1.1.i586.rpm
  http://download.opensuse.org/debug/update/11.1/rpm/i586/mozilla-xulrun ner190-debugsource-1.9.0.18-0.1.1.i586.rpm


• SuSE mozilla-xulrunner190-debugsource-1.9.0.18-0.1.1.ppc.rpm
  http://download.opensuse.org/debug/update/11.1/rpm/ppc/mozilla-xulrunn er190-debugsource-1.9.0.18-0.1.1.ppc.rpm


• SuSE mozilla-xulrunner190-translations-1.9.0.18-0.1.1.x86_64.rpm
  http://download.opensuse.org/update/11.1/rpm/x86_64/mozilla-xulrunner1 90-translations-1.9.0.18-0.1.1.x86_64.rpm

Slackware Linux 13.0 x86_64

• Slackware seamonkey-2.0.3-x86_64-1_slack13.0.txz
  ftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/package s/seamonkey-2.0.3-x86_64-1_slack13.0.txz


• Slackware seamonkey-solibs-2.0.3-x86_64-1_slack13.0.txz
  ftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/package s/seamonkey-solibs-2.0.3-x86_64-1_slack13.0.txz

S.u.S.E. openSUSE 11.2

• SuSE MozillaFirefox-3.5.8-0.1.1.x86_64.rpm
  http://download.opensuse.org/update/11.2/rpm/x86_64/MozillaFirefox-3.5 .8-0.1.1.x86_64.rpm


• SuSE python-xpcom191-1.9.1.8-0.1.1.i586.rpm
  http://download.opensuse.org/update/11.2/rpm/i586/python-xpcom191-1.9. 1.8-0.1.1.i586.rpm


• SuSE seamonkey-debuginfo-2.0.3-0.1.1.x86_64.rpm
  http://download.opensuse.org/debug/update/11.2/rpm/x86_64/seamonkey-de buginfo-2.0.3-0.1.1.x86_64.rpm


• SuSE seamonkey-irc-2.0.3-0.1.1.i586.rpm
  http://download.opensuse.org/update/11.2/rpm/i586/seamonkey-irc-2.0.3- 0.1.1.i586.rpm

Slackware Linux -current

• Slackware seamonkey-2.0.3-i486-1.txz
  ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/xap/ seamonkey-2.0.3-i486-1.txz


• Slackware seamonkey-solibs-2.0.3-i486-1.txz
  ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/l/se amonkey-solibs-2.0.3-i486-1.txz