Contact | Site en Français               

 


 

Vulnerabilities & Threats
 
  VUPEN Security Advisories
  Linux Security Advisories

  Malware Advisories
  Security Research
  Threat Watch Blog
  Zero-Day Monitor
  Search Engine
  Mailing List & RSS
 
   

>> Fedora Security Update Fixes Thunderbird Multiple Code Execution Vulnerabilities

Title : Fedora Security Update Fixes Thunderbird Multiple Code Execution Vulnerabilities
VUPEN ID : VUPEN/ADV-2007-2276
CVE ID : CVE-2007-1558 - CVE-2007-2867 - CVE-2007-2868
Rated as : Critical 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2007-06-21

Technical Description    Receive VUPEN Security alerts in a Text format  Receive VUPEN Security alerts in a PDF format  Receive VUPEN Security alerts in an XML format  Receive VUPEN Security notifications by SMS 

Multiple vulnerabilities have been identified in Fedora, which could be exploited by attackers to bypass security restrictions, disclose sensitive information, cause a denial of service or take complete control of an affected system. These issues are caused by errors in Thunderbird. For additional information, see : VUPEN/ADV-2007-1994

Affected Products

Fedora 7

Solution

Upgrade the affected packages :

396ce427599078808351ba5fe341009cfbf164a8 thunderbird-debuginfo-2.0.0.4-1.fc7.ppc64.rpm
0afe2a5f47100083b536d5a21ccd0569bbc0ffe0 thunderbird-2.0.0.4-1.fc7.ppc64.rpm
ea809d6d7cce07712ee1bde831e2e891d9c9cf36 thunderbird-debuginfo-2.0.0.4-1.fc7.i386.rpm
cc115ffbc68280b99f4081dc368b7f80d05fa3ad thunderbird-2.0.0.4-1.fc7.i386.rpm
7c957d0308918c8f50a0d5edb27ed502f35f428b thunderbird-2.0.0.4-1.fc7.x86_64.rpm
c26742f3a6fcc9d94501cf98dfe7e35858292883 thunderbird-debuginfo-2.0.0.4-1.fc7.x86_64.rpm
f06626b42c58e80ddefcee3f3ce843d86eb9df52 thunderbird-debuginfo-2.0.0.4-1.fc7.ppc.rpm
4836b613e80f26bed5a3d0d5ffca8e86d46ea063 thunderbird-2.0.0.4-1.fc7.ppc.rpm
90e9a4831982e287e1747b3436206bc65e5629aa thunderbird-2.0.0.4-1.fc7.src.rpm

References

http://www.vupen.com/english/advisories/2007/2276
https://www.redhat.com/archives/fedora-package-announce/2007-June/msg00431.html

ChangeLog

2007-06-21 : Initial release

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.
 

Vulnerability Alerting

Free 14-Day Trial
 
  Latest News

 

  >> 2009-06-10

     

  VUPEN Security Research
  Discovered Critical Flaws
  in Adobe Acrobat and MS
  Office Word


  >> 2009-06-02

     

  VUPEN Security Research
  Discovered Critical Flaws
  in ACDSee Products


  >> 2009-05-22

     

  VUPEN Discovered Two
  Critical Vulnerabilities in
  Novell GroupWise 8 / 7


  >> 2009-05-12

     

  Microsoft Patched 14
  Office PowerPoint Flaws

 

  >> 2009-04-28

     

  Adobe Reader / Acrobat
  Vulnerabilities Disclosed

 

 

More Informations    
    








Copyright 2003-2009 © VUPEN.COM - Privacy Policy