The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of Firefox 1.5: several vulnerabilities

Synthesis of the vulnerability 

Several vulnerabilities were announced in Firefox 1.5, the worst one leading to code execution.
Impacted products: Debian, Fedora, HP-UX, Mandriva Linux, Firefox, openSUSE, RHEL, Slackware.
Severity of this bulletin: 4/4.
Number of vulnerabilities in this bulletin: 6.
Creation date: 20/12/2006.
Références of this threat: BID-21668, c00771742, CERTA-2002-AVI-065, CERTA-2006-AVI-568, CVE-2006-6497, CVE-2006-6498, CVE-2006-6499, CVE-2006-6500, CVE-2006-6501, CVE-2006-6502, CVE-2006-6503, CVE-2006-6504, DSA-1253-1, FEDORA-2006-1492, FEDORA-2006-1499, HPSBUX02153, MDKSA-2007:010, MFSA2006-68, MFSA2006-69, MFSA2006-70, MFSA2006-71, MFSA2006-72, MFSA2006-73, RHSA-2006:0758-01, SSA:2006-357-01, SSRT061181, SUSE-SA:2006:080, TLSA-2006-48, VIGILANCE-VUL-6411, VU#263412, VU#405092, VU#427972, VU#428500, VU#447772, VU#606260, VU#722244, VU#928956, ZDI-06-051.

Description of the vulnerability 

Several vulnerabilities were announced in Firefox 1.5.

Several vulnerabilities of layout engine or of Javascript lead to memory corruptions, and to code execution. [severity:4/4; CERTA-2006-AVI-568, CVE-2006-6497, CVE-2006-6498, CVE-2006-6499, MFSA2006-68, VU#427972, VU#447772, VU#606260]

The "CSS cursor" property permits to corrupt memory in order to execute code. [severity:4/4; CVE-2006-6500, MFSA2006-69, VU#722244]

The JavaScript watch() function leads to code execution. [severity:4/4; CVE-2006-6501, MFSA2006-70, VU#263412]

A memory corruption of LiveConnect may lead to code execution. [severity:4/4; CVE-2006-6502, MFSA2006-71, VU#428500]

An attacker can execute script code via IMG and FRAME. [severity:4/4; CVE-2006-6503, MFSA2006-72, VU#405092]

An attacker can corrupt memory using a SVG comment. [severity:4/4; CVE-2006-6504, MFSA2006-73, VU#928956, ZDI-06-051]
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This computer vulnerability note impacts software or systems such as Debian, Fedora, HP-UX, Mandriva Linux, Firefox, openSUSE, RHEL, Slackware.

Our Vigil@nce team determined that the severity of this computer vulnerability announce is critical.

The trust level is of type confirmed by the editor, with an origin of internet server.

This bulletin is about 6 vulnerabilities.

An attacker with a expert ability can exploit this cybersecurity announce.

Solutions for this threat 

Firefox: version 1.5.0.9.
Version 1.5.0.9 is corrected:
  http://www.getfirefox.com/

Debian: new mozilla-firefox packages.
New packages are available:
  AMD64 architecture:
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge15_amd64.deb
      Size/MD5 checksum: 9426720 53465fbeaae00e568a11fc98071e2599
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge15_amd64.deb
      Size/MD5 checksum: 166126 676db838b32395439ccb0ad94c5cb6c5
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge15_amd64.deb
      Size/MD5 checksum: 61698 9d62947f05f67824f6acdbb6849d8443
  Intel IA-32 architecture:
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge15_i386.deb
      Size/MD5 checksum: 8916106 045df40e5bc26ce66e0a9708a5a4406b
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge15_i386.deb
      Size/MD5 checksum: 161328 9f771fcd1d6ae2ad5c41fe4012f52d66
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge15_i386.deb
      Size/MD5 checksum: 58556 4d36f81b43b0e07fc44f81b7560eb327
  Intel IA-64 architecture:
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge15_ia64.deb
      Size/MD5 checksum: 11660624 b47ecd6f9129cb4970d97cfa99b77653
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge15_ia64.deb
      Size/MD5 checksum: 171674 14771b5aa0078184992a9fdcf67a1f8f
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge15_ia64.deb
      Size/MD5 checksum: 66364 4b1e1e5db1abcc3368d841c696a497db

Fedora Core 5: new firefox packages.
New packages are available:
    http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/
7adb054fa9d328c994da34b00c1e39ab3861ec3d SRPMS/firefox-1.5.0.9-1.fc5.src.rpm
7adb054fa9d328c994da34b00c1e39ab3861ec3d noarch/firefox-1.5.0.9-1.fc5.src.rpm
6ef57784517cccd2b6107a72ac25ddaf2ddedd2c ppc/debug/firefox-debuginfo-1.5.0.9-1.fc5.ppc.rpm
cd587d1449885a232e7255d7147baf2497817cda ppc/firefox-1.5.0.9-1.fc5.ppc.rpm
5b7346c702bc999c0a4300ad6dc30dd04d5e212c x86_64/debug/firefox-debuginfo-1.5.0.9-1.fc5.x86_64.rpm
9b82c1c8df42ce68bb9301fa422262a8ed893985 x86_64/firefox-1.5.0.9-1.fc5.x86_64.rpm
a274f39e5fadc562eca0ad747c670bba6bc20c9d i386/debug/firefox-debuginfo-1.5.0.9-1.fc5.i386.rpm
f4deed8b6f417d2003216070088362ff666b5206 i386/firefox-1.5.0.9-1.fc5.i386.rpm

Fedora Core 6: new firefox packages.
New packages are available:
    http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/
e1fe5ef2c1156a06026b08a9023c05c0f43fd375 SRPMS/firefox-1.5.0.9-1.fc6.src.rpm
e1fe5ef2c1156a06026b08a9023c05c0f43fd375 noarch/firefox-1.5.0.9-1.fc6.src.rpm
0e1d89ab8417844327bf5a503e44eabed4b2989d ppc/debug/firefox-debuginfo-1.5.0.9-1.fc6.ppc.rpm
4d7214e03d8db9f236073bed272f584f70217c05 ppc/firefox-devel-1.5.0.9-1.fc6.ppc.rpm
212166e344557d93cd340a52f246d7f17e28ac93 ppc/firefox-1.5.0.9-1.fc6.ppc.rpm
ca2fb6249c633971b319363b5940702a4049fe71 x86_64/firefox-devel-1.5.0.9-1.fc6.x86_64.rpm
da7254f374f59aba18d466f025c7145181ba6c9b x86_64/debug/firefox-debuginfo-1.5.0.9-1.fc6.x86_64.rpm
cfd3064e23d4c97c8bf0167c323b5163d2df97a0 x86_64/firefox-1.5.0.9-1.fc6.x86_64.rpm
03cc7fcdd387fa443b7d2e2b2e199c5af1e98ffd i386/firefox-devel-1.5.0.9-1.fc6.i386.rpm
1b01573757dfddb260ce4a6f3e3e4e7e2e261f79 i386/debug/firefox-debuginfo-1.5.0.9-1.fc6.i386.rpm
156f9deca5f95a0dbd6770a11ddab7ecb88b6c29 i386/firefox-1.5.0.9-1.fc6.i386.rpm

HP-UX: new Firefox 2.0.0.6 version.
Version 2.0.0.6 is corrected:
  ftp://ftp.mozilla.org/pub/mozilla.org/firefox/releases/2.0.0.6/contrib/

Mandriva: new mozilla-firefox packages.
New packages are available:
 
 Mandriva Linux 2007.0:
  2007.0/i586/devhelp-0.12-5.2mdv2007.0.i586.rpm
  2007.0/i586/epiphany-2.16.0-4.2mdv2007.0.i586.rpm
  2007.0/i586/galeon-2.0.1-8.2mdv2007.0.i586.rpm
  2007.0/i586/mozilla-firefox*-1.5.0.9-1mdv2007.0.i586.rpm
 Mandriva Linux 2007.0/X86_64:
  2007.0/x86_64/devhelp-0.12-5.2mdv2007.0.x86_64.rpm
  2007.0/x86_64/epiphany-2.16.0-4.2mdv2007.0.x86_64.rpm
  2007.0/x86_64/galeon-2.0.1-8.2mdv2007.0.x86_64.rpm
  2007.0/x86_64/mozilla-firefox*-1.5.0.9-1mdv2007.0.x86_64.rpm
 Corporate 3.0:
  corporate/3.0/i586/mozilla-firefox*-1.5.0.9-0.1.C30mdk.i586.rpm
 Corporate 3.0/X86_64:
  corporate/3.0/x86_64/mozilla-firefox*-1.5.0.9-0.1.C30mdk.x86_64.rpm
 Corporate 4.0:
  corporate/4.0/i586/mozilla-firefox*-1.5.0.9-0.1.20060mlcs4.i586.rpm
 Corporate 4.0/X86_64:
  corporate/4.0/x86_64/mozilla-firefox*-1.5.0.9-0.1.20060mlcs4.x86_64.rpm

RHEL 4: new firefox packages.
New packages are available:
Red Hat Enterprise Linux version 4: firefox-1.5.0.9-0.1.el4

Slackware: new mozilla-firefox packages.
New packages are available:
Slackware 10.2:
ftp://ftp.slackware.com/pub/slackware/slackware-10.2/patches/packages/mozilla-firefox-1.5.0.9-i686-1.tgz
Slackware 11.0:
ftp://ftp.slackware.com/pub/slackware/slackware-11.0/extra/mozilla-firefox-2.0.0.1/mozilla-firefox-2.0.0.1-i686-1.tgz
ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/mozilla-firefox-1.5.0.9-i686-1.tgz

SUSE: new MozillaFirefox, MozillaThunderbird packages.
New packages are available:
   openSUSE 10.2:
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaFirefox-2.0.0.1-0.1.i586.rpm
         eea9f40b409823d691ad0e1b3daf5a82
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaFirefox-translations-2.0.0.1-0.1.i586.rpm
         dc5e760f067b2d1ea41be90c92517a5d
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaThunderbird-1.5.0.9-0.1.i586.rpm
         0b3638d9bfccfca0cf149df1200e6c47
   ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaThunderbird-translations-1.5.0.9-0.1.i586.rpm
         d51cb9ff1cb3f5875cb4fa60b58f159b
   SUSE LINUX 10.1:
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaFirefox-1.5.0.9-0.2.i586.rpm
         fa3a6d10cb1a6dd801668e8881424036
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaFirefox-translations-1.5.0.9-0.2.i586.rpm
         a40dc8d7e29aa8bb21ecb3c348e0cc05
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaThunderbird-1.5.0.9-0.1.i586.rpm
         3bbfce9a8abf9394959348e449b35b95
   ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaThunderbird-translations-1.5.0.9-0.1.i586.rpm
         869cac360c49cc15358b205923f2ee1d
   SUSE LINUX 10.0:
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/MozillaFirefox-1.5.0.9-0.1.i586.rpm
         f0b6bd1b56b874eb0003752cd112d6db
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/MozillaFirefox-translations-1.5.0.9-0.1.i586.rpm
         1722380cad796cc29d15374f7c471f09
   ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/MozillaThunderbird-1.5.0.9-0.1.i586.rpm
         82d7d8847f363a9e46fc9d22aa44f0c8
   SUSE LINUX 9.3:
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/MozillaFirefox-1.5.0.9-0.1.i586.rpm
         06b3af42ed8f528a306650691558301f
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/MozillaFirefox-translations-1.5.0.9-0.1.i586.rpm
         be42160ef33ead2625b20043267c2ce2
   ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/MozillaThunderbird-1.5.0.9-0.1.i586.rpm
         239aa22605bbd7c89a8489fb49c51f5d

Turbolinux: new firefox packages.
New packages are available:
Turbolinux FUJI
   firefox-1.5.0.9-1.src.rpm
   firefox-1.5.0.9-1.i686.rpm
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides a software vulnerabilities alert. The Vigil@nce vulnerability database contains several thousand vulnerabilities.