Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Slackware Local Security Checks >> SSA-2004-223-01 Mozilla


Vulnerability Assessment Details

SSA-2004-223-01 Mozilla

Vulnerability Assessment Summary
SSA-2004-223-01 Mozilla

Detailed Explanation for this Vulnerability Assessment

New Mozilla packages are available for Slackware 9.1, 10.0, and -current
to fix a number of security issues. Slackware 10.0 and -current were
upgraded to Mozilla 1.7.2, and Slackware 9.1 was upgraded to Mozilla 1.4.3.
As usual, new versions of Mozilla require new versions of things that link
with the Mozilla libraries, so for Slackware 10.0 and -current new versions
of epiphany, galeon, gaim, and mozilla-tests have also been provided.
There don't appear to be epiphany and galeon versions that are compatible
with Mozilla 1.4.3 and the GNOME in Slackware 9.1, so these are not
provided and Epiphany and Galeon will be broken on Slackware 9.1 if the
new Mozilla package is installed. Furthermore, earlier versions of
Mozilla (such as the 1.3 series) were not fixed upstream, so versions
of Slackware earlier than 9.1 will remain vulnerable to these browser
issues. If you still use Slackware 9.0 or earlier, you may want to
consider removing Mozilla or upgrading to a newer version.

More details about these issues may be found in the Common
Vulnerabilities and Exposures (CVE) database:

Issues fixed in Mozilla 1.7.2:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0597
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0598
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0599
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0763
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0758

Issues fixed in Mozilla 1.4.3:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0597
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0718
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0722
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0757
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0758
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0759
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0760
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0761
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0762
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0763
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0764
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0765




Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2005 Michel Arboi

Cables, Connectors


Vintage Logitech Scan Man Color 2000 Page Scanner DB25 Parallel Port Interface picture

Vintage Logitech Scan Man Color 2000 Page Scanner DB25 Parallel Port Interface

$24.95



Vintage Classic Apple Macintosh System Boot Install Disk Floppy/CD *Pick Version picture

Vintage Classic Apple Macintosh System Boot Install Disk Floppy/CD *Pick Version

$38.75



Vintage SILENTWRITER Superscript 660 User's Guide 1990 NEC Technologies Manual picture

Vintage SILENTWRITER Superscript 660 User's Guide 1990 NEC Technologies Manual

$19.99



Claris Home Page 2.0  Windows & Mac 1996 Vintage RARE New & Sealed picture

Claris Home Page 2.0 Windows & Mac 1996 Vintage RARE New & Sealed

$15.99



Vintage Apple Keyboard Macintosh M0116 With Original Box picture

Vintage Apple Keyboard Macintosh M0116 With Original Box

$100.00



AMD Am386 DX-40 NG80386DX-40 Vintage 386 Processor Working Pull 32 bit CPU picture

AMD Am386 DX-40 NG80386DX-40 Vintage 386 Processor Working Pull 32 bit CPU

$24.98



Vintage Chicony KB-5981 Mechanical Keyboard picture

Vintage Chicony KB-5981 Mechanical Keyboard

$25.00



RARE Vintage Soyo 4SA 486DX/4 AT Motherboard 256K PCI/ISA, IDE-I/O — TESTED picture

RARE Vintage Soyo 4SA 486DX/4 AT Motherboard 256K PCI/ISA, IDE-I/O — TESTED

$129.97



Retro Vintage Windows 98 Computer with Geforce4 Ready to Play picture

Retro Vintage Windows 98 Computer with Geforce4 Ready to Play

$300.00



IBM DisplayWriter Vintage Word Processor CPU  picture

IBM DisplayWriter Vintage Word Processor CPU

$234.09



Discussions

No Discussions have been posted on this vulnerability.