rhsa-2007_1083
Vulnerability from csaf_redhat
Published
2007-12-19 16:32
Modified
2024-11-22 01:38
Summary
Red Hat Security Advisory: thunderbird security update
Notes
Topic
Updated thunderbird packages that fix several security issues are now
available for Red Hat Enterprise Linux 4 and 5.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Details
Mozilla Thunderbird is a standalone mail and newsgroup client.
A cross-site scripting flaw was found in the way Thunderbird handled the
jar: URI scheme. It may be possible for a malicious HTML mail message to
leverage this flaw, and conduct a cross-site scripting attack against a
user running Thunderbird. (CVE-2007-5947)
Several flaws were found in the way Thunderbird processed certain malformed
HTML mail content. A HTML mail message containing malicious content could
cause Thunderbird to crash, or potentially execute arbitrary code as the
user running Thunderbird. (CVE-2007-5959)
A race condition existed when Thunderbird set the "window.location"
property when displaying HTML mail content. This flaw could allow a HTML
mail message to set an arbitrary Referer header, which may lead to a
Cross-site Request Forgery (CSRF) attack against websites that rely only on
the Referer header for protection. (CVE-2007-5960)
All users of thunderbird are advised to upgrade to these updated packages,
which contain backported patches to resolve these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated thunderbird packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 4 and 5.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.",
"title": "Topic"
},
{
"category": "general",
"text": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nA cross-site scripting flaw was found in the way Thunderbird handled the\njar: URI scheme. It may be possible for a malicious HTML mail message to\nleverage this flaw, and conduct a cross-site scripting attack against a\nuser running Thunderbird. (CVE-2007-5947)\n\nSeveral flaws were found in the way Thunderbird processed certain malformed\nHTML mail content. A HTML mail message containing malicious content could\ncause Thunderbird to crash, or potentially execute arbitrary code as the\nuser running Thunderbird. (CVE-2007-5959)\n\nA race condition existed when Thunderbird set the \"window.location\"\nproperty when displaying HTML mail content. This flaw could allow a HTML\nmail message to set an arbitrary Referer header, which may lead to a\nCross-site Request Forgery (CSRF) attack against websites that rely only on\nthe Referer header for protection. (CVE-2007-5960) \n\nAll users of thunderbird are advised to upgrade to these updated packages,\nwhich contain backported patches to resolve these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2007:1083",
"url": "https://access.redhat.com/errata/RHSA-2007:1083"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "394211",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=394211"
},
{
"category": "external",
"summary": "394241",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=394241"
},
{
"category": "external",
"summary": "394261",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=394261"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2007/rhsa-2007_1083.json"
}
],
"title": "Red Hat Security Advisory: thunderbird security update",
"tracking": {
"current_release_date": "2024-11-22T01:38:40+00:00",
"generator": {
"date": "2024-11-22T01:38:40+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2007:1083",
"initial_release_date": "2007-12-19T16:32:00+00:00",
"revision_history": [
{
"date": "2007-12-19T16:32:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2007-12-19T11:49:57+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T01:38:40+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AS version 4",
"product": {
"name": "Red Hat Enterprise Linux AS version 4",
"product_id": "4AS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::as"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop version 4",
"product": {
"name": "Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::desktop"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ES version 4",
"product": {
"name": "Red Hat Enterprise Linux ES version 4",
"product_id": "4ES",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::es"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux WS version 4",
"product": {
"name": "Red Hat Enterprise Linux WS version 4",
"product_id": "4WS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::ws"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)",
"product": {
"name": "Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)",
"product_id": "5Server-DPAS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_productivity:5"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::client"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:1.5.0.12-7.el4.ia64",
"product": {
"name": "thunderbird-0:1.5.0.12-7.el4.ia64",
"product_id": "thunderbird-0:1.5.0.12-7.el4.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.5.0.12-7.el4?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"product": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"product_id": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.5.0.12-7.el4?arch=ia64"
}
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:1.5.0.12-7.el4.src",
"product": {
"name": "thunderbird-0:1.5.0.12-7.el4.src",
"product_id": "thunderbird-0:1.5.0.12-7.el4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.5.0.12-7.el4?arch=src"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:1.5.0.12-7.el5.src",
"product": {
"name": "thunderbird-0:1.5.0.12-7.el5.src",
"product_id": "thunderbird-0:1.5.0.12-7.el5.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.5.0.12-7.el5?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:1.5.0.12-7.el4.x86_64",
"product": {
"name": "thunderbird-0:1.5.0.12-7.el4.x86_64",
"product_id": "thunderbird-0:1.5.0.12-7.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.5.0.12-7.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"product": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"product_id": "thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.5.0.12-7.el4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:1.5.0.12-7.el5.x86_64",
"product": {
"name": "thunderbird-0:1.5.0.12-7.el5.x86_64",
"product_id": "thunderbird-0:1.5.0.12-7.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.5.0.12-7.el5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64",
"product": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64",
"product_id": "thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.5.0.12-7.el5?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:1.5.0.12-7.el4.i386",
"product": {
"name": "thunderbird-0:1.5.0.12-7.el4.i386",
"product_id": "thunderbird-0:1.5.0.12-7.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.5.0.12-7.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"product": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"product_id": "thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.5.0.12-7.el4?arch=i386"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:1.5.0.12-7.el5.i386",
"product": {
"name": "thunderbird-0:1.5.0.12-7.el5.i386",
"product_id": "thunderbird-0:1.5.0.12-7.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.5.0.12-7.el5?arch=i386"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el5.i386",
"product": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el5.i386",
"product_id": "thunderbird-debuginfo-0:1.5.0.12-7.el5.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.5.0.12-7.el5?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:1.5.0.12-7.el4.ppc",
"product": {
"name": "thunderbird-0:1.5.0.12-7.el4.ppc",
"product_id": "thunderbird-0:1.5.0.12-7.el4.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.5.0.12-7.el4?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"product": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"product_id": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.5.0.12-7.el4?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:1.5.0.12-7.el4.s390x",
"product": {
"name": "thunderbird-0:1.5.0.12-7.el4.s390x",
"product_id": "thunderbird-0:1.5.0.12-7.el4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.5.0.12-7.el4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"product": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"product_id": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.5.0.12-7.el4?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:1.5.0.12-7.el4.s390",
"product": {
"name": "thunderbird-0:1.5.0.12-7.el4.s390",
"product_id": "thunderbird-0:1.5.0.12-7.el4.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.5.0.12-7.el4?arch=s390"
}
}
},
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"product": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"product_id": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.5.0.12-7.el4?arch=s390"
}
}
}
],
"category": "architecture",
"name": "s390"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.5.0.12-7.el4.i386"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.5.0.12-7.el4.ia64"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.5.0.12-7.el4.ppc"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.5.0.12-7.el4.s390"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.5.0.12-7.el4.s390x"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.src as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.5.0.12-7.el4.src"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.src",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.5.0.12-7.el4.x86_64"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.5.0.12-7.el4.i386"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.5.0.12-7.el4.ia64"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.5.0.12-7.el4.ppc"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.5.0.12-7.el4.s390"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.5.0.12-7.el4.s390x"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.src as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.5.0.12-7.el4.src"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.src",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.5.0.12-7.el4.x86_64"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.5.0.12-7.el4.i386"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.5.0.12-7.el4.ia64"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.5.0.12-7.el4.ppc"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.5.0.12-7.el4.s390"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.5.0.12-7.el4.s390x"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.src as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.5.0.12-7.el4.src"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.src",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.5.0.12-7.el4.x86_64"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.5.0.12-7.el4.i386"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.5.0.12-7.el4.ia64"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.5.0.12-7.el4.ppc"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.5.0.12-7.el4.s390"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.5.0.12-7.el4.s390x"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.src as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.5.0.12-7.el4.src"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.src",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.5.0.12-7.el4.x86_64"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el4.x86_64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:thunderbird-0:1.5.0.12-7.el5.i386"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el5.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el5.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:thunderbird-0:1.5.0.12-7.el5.src"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el5.src",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:thunderbird-0:1.5.0.12-7.el5.x86_64"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el5.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:thunderbird-debuginfo-0:1.5.0.12-7.el5.i386"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el5.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el5.i386 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)",
"product_id": "5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.i386"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el5.i386",
"relates_to_product_reference": "5Server-DPAS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el5.src as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)",
"product_id": "5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.src"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el5.src",
"relates_to_product_reference": "5Server-DPAS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.5.0.12-7.el5.x86_64 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)",
"product_id": "5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.x86_64"
},
"product_reference": "thunderbird-0:1.5.0.12-7.el5.x86_64",
"relates_to_product_reference": "5Server-DPAS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el5.i386 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)",
"product_id": "5Server-DPAS:thunderbird-debuginfo-0:1.5.0.12-7.el5.i386"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el5.i386",
"relates_to_product_reference": "5Server-DPAS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)",
"product_id": "5Server-DPAS:thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64",
"relates_to_product_reference": "5Server-DPAS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2007-5947",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2007-11-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "394211"
}
],
"notes": [
{
"category": "description",
"text": "The jar protocol handler in Mozilla Firefox before 2.0.0.10 and SeaMonkey before 1.1.7 retrieves the inner URL regardless of its MIME type, and considers HTML documents within a jar archive to have the same origin as the inner URL, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a jar: URI.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jar: protocol XSS",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.5.0.12-7.el4.i386",
"4AS:thunderbird-0:1.5.0.12-7.el4.ia64",
"4AS:thunderbird-0:1.5.0.12-7.el4.ppc",
"4AS:thunderbird-0:1.5.0.12-7.el4.s390",
"4AS:thunderbird-0:1.5.0.12-7.el4.s390x",
"4AS:thunderbird-0:1.5.0.12-7.el4.src",
"4AS:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.i386",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.ia64",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.ppc",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.s390",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.s390x",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.src",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4ES:thunderbird-0:1.5.0.12-7.el4.i386",
"4ES:thunderbird-0:1.5.0.12-7.el4.ia64",
"4ES:thunderbird-0:1.5.0.12-7.el4.ppc",
"4ES:thunderbird-0:1.5.0.12-7.el4.s390",
"4ES:thunderbird-0:1.5.0.12-7.el4.s390x",
"4ES:thunderbird-0:1.5.0.12-7.el4.src",
"4ES:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4WS:thunderbird-0:1.5.0.12-7.el4.i386",
"4WS:thunderbird-0:1.5.0.12-7.el4.ia64",
"4WS:thunderbird-0:1.5.0.12-7.el4.ppc",
"4WS:thunderbird-0:1.5.0.12-7.el4.s390",
"4WS:thunderbird-0:1.5.0.12-7.el4.s390x",
"4WS:thunderbird-0:1.5.0.12-7.el4.src",
"4WS:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"5Client:thunderbird-0:1.5.0.12-7.el5.i386",
"5Client:thunderbird-0:1.5.0.12-7.el5.src",
"5Client:thunderbird-0:1.5.0.12-7.el5.x86_64",
"5Client:thunderbird-debuginfo-0:1.5.0.12-7.el5.i386",
"5Client:thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.i386",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.src",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.x86_64",
"5Server-DPAS:thunderbird-debuginfo-0:1.5.0.12-7.el5.i386",
"5Server-DPAS:thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2007-5947"
},
{
"category": "external",
"summary": "RHBZ#394211",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=394211"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2007-5947",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-5947"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-5947",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2007-5947"
}
],
"release_date": "2007-02-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2007-12-19T16:32:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188",
"product_ids": [
"4AS:thunderbird-0:1.5.0.12-7.el4.i386",
"4AS:thunderbird-0:1.5.0.12-7.el4.ia64",
"4AS:thunderbird-0:1.5.0.12-7.el4.ppc",
"4AS:thunderbird-0:1.5.0.12-7.el4.s390",
"4AS:thunderbird-0:1.5.0.12-7.el4.s390x",
"4AS:thunderbird-0:1.5.0.12-7.el4.src",
"4AS:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.i386",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.ia64",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.ppc",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.s390",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.s390x",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.src",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4ES:thunderbird-0:1.5.0.12-7.el4.i386",
"4ES:thunderbird-0:1.5.0.12-7.el4.ia64",
"4ES:thunderbird-0:1.5.0.12-7.el4.ppc",
"4ES:thunderbird-0:1.5.0.12-7.el4.s390",
"4ES:thunderbird-0:1.5.0.12-7.el4.s390x",
"4ES:thunderbird-0:1.5.0.12-7.el4.src",
"4ES:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4WS:thunderbird-0:1.5.0.12-7.el4.i386",
"4WS:thunderbird-0:1.5.0.12-7.el4.ia64",
"4WS:thunderbird-0:1.5.0.12-7.el4.ppc",
"4WS:thunderbird-0:1.5.0.12-7.el4.s390",
"4WS:thunderbird-0:1.5.0.12-7.el4.s390x",
"4WS:thunderbird-0:1.5.0.12-7.el4.src",
"4WS:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"5Client:thunderbird-0:1.5.0.12-7.el5.i386",
"5Client:thunderbird-0:1.5.0.12-7.el5.src",
"5Client:thunderbird-0:1.5.0.12-7.el5.x86_64",
"5Client:thunderbird-debuginfo-0:1.5.0.12-7.el5.i386",
"5Client:thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.i386",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.src",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.x86_64",
"5Server-DPAS:thunderbird-debuginfo-0:1.5.0.12-7.el5.i386",
"5Server-DPAS:thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2007:1083"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jar: protocol XSS"
},
{
"cve": "CVE-2007-5959",
"discovery_date": "2007-11-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "394241"
}
],
"notes": [
{
"category": "description",
"text": "Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.10 and SeaMonkey before 1.1.7 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors that trigger memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Multiple flaws in Firefox",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.5.0.12-7.el4.i386",
"4AS:thunderbird-0:1.5.0.12-7.el4.ia64",
"4AS:thunderbird-0:1.5.0.12-7.el4.ppc",
"4AS:thunderbird-0:1.5.0.12-7.el4.s390",
"4AS:thunderbird-0:1.5.0.12-7.el4.s390x",
"4AS:thunderbird-0:1.5.0.12-7.el4.src",
"4AS:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.i386",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.ia64",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.ppc",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.s390",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.s390x",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.src",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4ES:thunderbird-0:1.5.0.12-7.el4.i386",
"4ES:thunderbird-0:1.5.0.12-7.el4.ia64",
"4ES:thunderbird-0:1.5.0.12-7.el4.ppc",
"4ES:thunderbird-0:1.5.0.12-7.el4.s390",
"4ES:thunderbird-0:1.5.0.12-7.el4.s390x",
"4ES:thunderbird-0:1.5.0.12-7.el4.src",
"4ES:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4WS:thunderbird-0:1.5.0.12-7.el4.i386",
"4WS:thunderbird-0:1.5.0.12-7.el4.ia64",
"4WS:thunderbird-0:1.5.0.12-7.el4.ppc",
"4WS:thunderbird-0:1.5.0.12-7.el4.s390",
"4WS:thunderbird-0:1.5.0.12-7.el4.s390x",
"4WS:thunderbird-0:1.5.0.12-7.el4.src",
"4WS:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"5Client:thunderbird-0:1.5.0.12-7.el5.i386",
"5Client:thunderbird-0:1.5.0.12-7.el5.src",
"5Client:thunderbird-0:1.5.0.12-7.el5.x86_64",
"5Client:thunderbird-debuginfo-0:1.5.0.12-7.el5.i386",
"5Client:thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.i386",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.src",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.x86_64",
"5Server-DPAS:thunderbird-debuginfo-0:1.5.0.12-7.el5.i386",
"5Server-DPAS:thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2007-5959"
},
{
"category": "external",
"summary": "RHBZ#394241",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=394241"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2007-5959",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-5959"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-5959",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2007-5959"
}
],
"release_date": "2007-11-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2007-12-19T16:32:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188",
"product_ids": [
"4AS:thunderbird-0:1.5.0.12-7.el4.i386",
"4AS:thunderbird-0:1.5.0.12-7.el4.ia64",
"4AS:thunderbird-0:1.5.0.12-7.el4.ppc",
"4AS:thunderbird-0:1.5.0.12-7.el4.s390",
"4AS:thunderbird-0:1.5.0.12-7.el4.s390x",
"4AS:thunderbird-0:1.5.0.12-7.el4.src",
"4AS:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.i386",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.ia64",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.ppc",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.s390",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.s390x",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.src",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4ES:thunderbird-0:1.5.0.12-7.el4.i386",
"4ES:thunderbird-0:1.5.0.12-7.el4.ia64",
"4ES:thunderbird-0:1.5.0.12-7.el4.ppc",
"4ES:thunderbird-0:1.5.0.12-7.el4.s390",
"4ES:thunderbird-0:1.5.0.12-7.el4.s390x",
"4ES:thunderbird-0:1.5.0.12-7.el4.src",
"4ES:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4WS:thunderbird-0:1.5.0.12-7.el4.i386",
"4WS:thunderbird-0:1.5.0.12-7.el4.ia64",
"4WS:thunderbird-0:1.5.0.12-7.el4.ppc",
"4WS:thunderbird-0:1.5.0.12-7.el4.s390",
"4WS:thunderbird-0:1.5.0.12-7.el4.s390x",
"4WS:thunderbird-0:1.5.0.12-7.el4.src",
"4WS:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"5Client:thunderbird-0:1.5.0.12-7.el5.i386",
"5Client:thunderbird-0:1.5.0.12-7.el5.src",
"5Client:thunderbird-0:1.5.0.12-7.el5.x86_64",
"5Client:thunderbird-debuginfo-0:1.5.0.12-7.el5.i386",
"5Client:thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.i386",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.src",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.x86_64",
"5Server-DPAS:thunderbird-debuginfo-0:1.5.0.12-7.el5.i386",
"5Server-DPAS:thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2007:1083"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "Multiple flaws in Firefox"
},
{
"cve": "CVE-2007-5960",
"cwe": {
"id": "CWE-352",
"name": "Cross-Site Request Forgery (CSRF)"
},
"discovery_date": "2007-11-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "394261"
}
],
"notes": [
{
"category": "description",
"text": "Mozilla Firefox before 2.0.0.10 and SeaMonkey before 1.1.7 sets the Referer header to the window or frame in which script is running, instead of the address of the content that initiated the script, which allows remote attackers to spoof HTTP Referer headers and bypass Referer-based CSRF protection schemes by setting window.location and using a modal alert dialog that causes the wrong Referer to be sent.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Mozilla Cross-site Request Forgery flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.5.0.12-7.el4.i386",
"4AS:thunderbird-0:1.5.0.12-7.el4.ia64",
"4AS:thunderbird-0:1.5.0.12-7.el4.ppc",
"4AS:thunderbird-0:1.5.0.12-7.el4.s390",
"4AS:thunderbird-0:1.5.0.12-7.el4.s390x",
"4AS:thunderbird-0:1.5.0.12-7.el4.src",
"4AS:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.i386",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.ia64",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.ppc",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.s390",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.s390x",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.src",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4ES:thunderbird-0:1.5.0.12-7.el4.i386",
"4ES:thunderbird-0:1.5.0.12-7.el4.ia64",
"4ES:thunderbird-0:1.5.0.12-7.el4.ppc",
"4ES:thunderbird-0:1.5.0.12-7.el4.s390",
"4ES:thunderbird-0:1.5.0.12-7.el4.s390x",
"4ES:thunderbird-0:1.5.0.12-7.el4.src",
"4ES:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4WS:thunderbird-0:1.5.0.12-7.el4.i386",
"4WS:thunderbird-0:1.5.0.12-7.el4.ia64",
"4WS:thunderbird-0:1.5.0.12-7.el4.ppc",
"4WS:thunderbird-0:1.5.0.12-7.el4.s390",
"4WS:thunderbird-0:1.5.0.12-7.el4.s390x",
"4WS:thunderbird-0:1.5.0.12-7.el4.src",
"4WS:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"5Client:thunderbird-0:1.5.0.12-7.el5.i386",
"5Client:thunderbird-0:1.5.0.12-7.el5.src",
"5Client:thunderbird-0:1.5.0.12-7.el5.x86_64",
"5Client:thunderbird-debuginfo-0:1.5.0.12-7.el5.i386",
"5Client:thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.i386",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.src",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.x86_64",
"5Server-DPAS:thunderbird-debuginfo-0:1.5.0.12-7.el5.i386",
"5Server-DPAS:thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2007-5960"
},
{
"category": "external",
"summary": "RHBZ#394261",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=394261"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2007-5960",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-5960"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-5960",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2007-5960"
}
],
"release_date": "2007-11-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2007-12-19T16:32:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188",
"product_ids": [
"4AS:thunderbird-0:1.5.0.12-7.el4.i386",
"4AS:thunderbird-0:1.5.0.12-7.el4.ia64",
"4AS:thunderbird-0:1.5.0.12-7.el4.ppc",
"4AS:thunderbird-0:1.5.0.12-7.el4.s390",
"4AS:thunderbird-0:1.5.0.12-7.el4.s390x",
"4AS:thunderbird-0:1.5.0.12-7.el4.src",
"4AS:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4AS:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.i386",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.ia64",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.ppc",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.s390",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.s390x",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.src",
"4Desktop:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4Desktop:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4ES:thunderbird-0:1.5.0.12-7.el4.i386",
"4ES:thunderbird-0:1.5.0.12-7.el4.ia64",
"4ES:thunderbird-0:1.5.0.12-7.el4.ppc",
"4ES:thunderbird-0:1.5.0.12-7.el4.s390",
"4ES:thunderbird-0:1.5.0.12-7.el4.s390x",
"4ES:thunderbird-0:1.5.0.12-7.el4.src",
"4ES:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4ES:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"4WS:thunderbird-0:1.5.0.12-7.el4.i386",
"4WS:thunderbird-0:1.5.0.12-7.el4.ia64",
"4WS:thunderbird-0:1.5.0.12-7.el4.ppc",
"4WS:thunderbird-0:1.5.0.12-7.el4.s390",
"4WS:thunderbird-0:1.5.0.12-7.el4.s390x",
"4WS:thunderbird-0:1.5.0.12-7.el4.src",
"4WS:thunderbird-0:1.5.0.12-7.el4.x86_64",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.i386",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ia64",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.ppc",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.s390x",
"4WS:thunderbird-debuginfo-0:1.5.0.12-7.el4.x86_64",
"5Client:thunderbird-0:1.5.0.12-7.el5.i386",
"5Client:thunderbird-0:1.5.0.12-7.el5.src",
"5Client:thunderbird-0:1.5.0.12-7.el5.x86_64",
"5Client:thunderbird-debuginfo-0:1.5.0.12-7.el5.i386",
"5Client:thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.i386",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.src",
"5Server-DPAS:thunderbird-0:1.5.0.12-7.el5.x86_64",
"5Server-DPAS:thunderbird-debuginfo-0:1.5.0.12-7.el5.i386",
"5Server-DPAS:thunderbird-debuginfo-0:1.5.0.12-7.el5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2007:1083"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Mozilla Cross-site Request Forgery flaw"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.