• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Netscape/Mozilla JAR Remote Heap Corruption Vulnerability

Solution:
Red Hat has released a security advisory (RHSA-2003:163-11) to address this issue in Red Hat enterprise Linux. Customers who are potentially affected by this vulnerability are advised to download and apply the appropriate fix as soon as possible. These fixes are available on the Red Hat Network, further information regarding obtaining and applying appropriate fixes is available in the referenced advisory.

Sun have made fixes available to address this issue in Sun Linux 5.0.7. Fixes are linked below.

Red Hat has released an updated advisory RHSA-2003:162-02 to address this issue. See referenced advisory for additional details regarding obtaining and applying fixes.

Red Hat has released advisory RHSA-2003:162-01 to address this issue. See referenced advisory for additional details.

Red Hat has released a security advisory (RHSA-2003-163) including fixes to address this issue in Advanced Workstation and Enterprise server releases. Fixes are available via the Red Hat Network (http://rhn.redhat.com). Further details can be found in the referenced advisory.


Mozilla Browser 0.9.9

• Red Hat mozilla-1.0.2-1.8.0.i386.rpm
  ftp://updates.redhat.com/8.0/en/os/i386/mozilla-1.0.2-1.8.0.i386.rpm


• Red Hat mozilla-1.0.2-2.7.1.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/mozilla-1.0.2-2.7.1.i386.rpm


• Red Hat mozilla-1.0.2-2.7.2.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/mozilla-1.0.2-2.7.2.i386.rpm


• Red Hat mozilla-1.0.2-2.7.3.i386.rpm
  ftp://updates.redhat.com/7.3/en/os/i386/mozilla-1.0.2-2.7.3.i386.rpm


• Red Hat mozilla-chat-1.0.2-1.8.0.i386.rpm
  ftp://updates.redhat.com/8.0/en/os/i386/mozilla-chat-1.0.2-1.8.0.i386. rpm


• Red Hat mozilla-chat-1.0.2-2.7.1.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/mozilla-chat-1.0.2-2.7.1.i386. rpm


• Red Hat mozilla-chat-1.0.2-2.7.2.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/mozilla-chat-1.0.2-2.7.2.i386. rpm


• Red Hat mozilla-chat-1.0.2-2.7.3.i386.rpm
  ftp://updates.redhat.com/7.3/en/os/i386/mozilla-chat-1.0.2-2.7.3.i386. rpm


• Red Hat mozilla-devel-1.0.2-1.8.0.i386.rpm
  ftp://updates.redhat.com/8.0/en/os/i386/mozilla-devel-1.0.2-1.8.0.i386 .rpm


• Red Hat mozilla-devel-1.0.2-2.7.1.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/mozilla-devel-1.0.2-2.7.1.i386 .rpm


• Red Hat mozilla-devel-1.0.2-2.7.2.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/mozilla-devel-1.0.2-2.7.2.i386 .rpm


• Red Hat mozilla-devel-1.0.2-2.7.3.i386.rpm
  ftp://updates.redhat.com/7.3/en/os/i386/mozilla-devel-1.0.2-2.7.3.i386 .rpm


• Red Hat mozilla-dom-inspector-1.0.2-1.8.0.i386.rpm
  ftp://updates.redhat.com/8.0/en/os/i386/mozilla-dom-inspector-1.0.2-1. 8.0.i386.rpm


• Red Hat mozilla-dom-inspector-1.0.2-2.7.1.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/mozilla-dom-inspector-1.0.2-2. 7.1.i386.rpm


• Red Hat mozilla-dom-inspector-1.0.2-2.7.2.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/mozilla-dom-inspector-1.0.2-2. 7.2.i386.rpm


• Red Hat mozilla-dom-inspector-1.0.2-2.7.3.i386.rpm
  ftp://updates.redhat.com/7.3/en/os/i386/mozilla-dom-inspector-1.0.2-2. 7.3.i386.rpm


• Red Hat mozilla-js-debugger-1.0.2-1.8.0.i386.rpm
  ftp://updates.redhat.com/8.0/en/os/i386/mozilla-js-debugger-1.0.2-1.8. 0.i386.rpm


• Red Hat mozilla-js-debugger-1.0.2-2.7.1.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/mozilla-js-debugger-1.0.2-2.7. 1.i386.rpm


• Red Hat mozilla-js-debugger-1.0.2-2.7.2.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/mozilla-js-debugger-1.0.2-2.7. 2.i386.rpm


• Red Hat mozilla-js-debugger-1.0.2-2.7.3.i386.rpm
  ftp://updates.redhat.com/7.3/en/os/i386/mozilla-js-debugger-1.0.2-2.7. 3.i386.rpm


• Red Hat mozilla-mail-1.0.2-1.8.0.i386.rpm
  ftp://updates.redhat.com/8.0/en/os/i386/mozilla-mail-1.0.2-1.8.0.i386. rpm


• Red Hat mozilla-mail-1.0.2-2.7.1.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/mozilla-mail-1.0.2-2.7.1.i386. rpm


• Red Hat mozilla-mail-1.0.2-2.7.2.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/mozilla-mail-1.0.2-2.7.2.i386. rpm


• Red Hat mozilla-mail-1.0.2-2.7.3.i386.rpm
  ftp://updates.redhat.com/7.3/en/os/i386/mozilla-mail-1.0.2-2.7.3.i386. rpm


• Red Hat mozilla-nspr-1.0.2-1.8.0.i386.rpm
  ftp://updates.redhat.com/8.0/en/os/i386/mozilla-nspr-1.0.2-1.8.0.i386. rpm


• Red Hat mozilla-nspr-1.0.2-2.7.1.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/mozilla-nspr-1.0.2-2.7.1.i386. rpm


• Red Hat mozilla-nspr-1.0.2-2.7.2.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/mozilla-nspr-1.0.2-2.7.2.i386. rpm


• Red Hat mozilla-nspr-1.0.2-2.7.3.i386.rpm
  ftp://updates.redhat.com/7.3/en/os/i386/mozilla-nspr-1.0.2-2.7.3.i386. rpm


• Red Hat mozilla-nspr-devel-1.0.2-1.8.0.i386.rpm
  ftp://updates.redhat.com/8.0/en/os/i386/mozilla-nspr-devel-1.0.2-1.8.0 .i386.rpm


• Red Hat mozilla-nspr-devel-1.0.2-2.7.1.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/mozilla-nspr-devel-1.0.2-2.7.1 .i386.rpm


• Red Hat mozilla-nspr-devel-1.0.2-2.7.2.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/mozilla-nspr-devel-1.0.2-2.7.2 .i386.rpm


• Red Hat mozilla-nspr-devel-1.0.2-2.7.3.i386.rpm
  ftp://updates.redhat.com/7.3/en/os/i386/mozilla-nspr-devel-1.0.2-2.7.3 .i386.rpm


• Red Hat mozilla-nss-1.0.2-1.8.0.i386.rpm
  ftp://updates.redhat.com/8.0/en/os/i386/mozilla-nss-1.0.2-1.8.0.i386.r pm


• Red Hat mozilla-nss-1.0.2-2.7.1.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/mozilla-nss-1.0.2-2.7.1.i386.r pm


• Red Hat mozilla-nss-1.0.2-2.7.2.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/mozilla-nss-1.0.2-2.7.2.i386.r pm


• Red Hat mozilla-nss-1.0.2-2.7.3.i386.rpm
  ftp://updates.redhat.com/7.3/en/os/i386/mozilla-nss-1.0.2-2.7.3.i386.r pm


• Red Hat mozilla-nss-devel-1.0.2-1.8.0.i386.rpm
  ftp://updates.redhat.com/8.0/en/os/i386/mozilla-nss-devel-1.0.2-1.8.0. i386.rpm


• Red Hat mozilla-nss-devel-1.0.2-2.7.1.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/mozilla-nss-devel-1.0.2-2.7.1. i386.rpm


• Red Hat mozilla-nss-devel-1.0.2-2.7.2.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/mozilla-nss-devel-1.0.2-2.7.2. i386.rpm


• Red Hat mozilla-nss-devel-1.0.2-2.7.3.i386.rpm
  ftp://updates.redhat.com/7.3/en/os/i386/mozilla-nss-devel-1.0.2-2.7.3. i386.rpm


• Red Hat mozilla-psm-1.0.2-1.8.0.i386.rpm
  ftp://updates.redhat.com/8.0/en/os/i386/mozilla-psm-1.0.2-1.8.0.i386.r pm


• Red Hat mozilla-psm-1.0.2-2.7.1.i386.rpm
  ftp://updates.redhat.com/7.1/en/os/i386/mozilla-psm-1.0.2-2.7.1.i386.r pm


• Red Hat mozilla-psm-1.0.2-2.7.2.i386.rpm
  ftp://updates.redhat.com/7.2/en/os/i386/mozilla-psm-1.0.2-2.7.2.i386.r pm


• Red Hat mozilla-psm-1.0.2-2.7.3.i386.rpm
  ftp://updates.redhat.com/7.3/en/os/i386/mozilla-psm-1.0.2-2.7.3.i386.r pm

SGI ProPack 2.2.1

• SGI Patch 10031
  ftp://oss.sgi.com/projects/sgi_propack/download/2.2.1/updates/RPMS

SGI ProPack 2.3

• SGI Patch 10031
  ftp://oss.sgi.com/projects/sgi_propack/download/2.3/updates/RPMS