# Oracle Linux Security Advisory ELSA-2011-0473 respectively.
# extracted from Red Hat Security Advisory RHSA-2011:0473 and # The descriptive text and package checks in this plugin were This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. A web page with a frameset tag containing large values for the (CVE-2011-0078) An integer overflow flaw was found in the way SeaMonkey handled the HTML frameset tag. If all memory was consumed when a user visited a malicious web page, it could possibly lead to arbitrary code execution with the privileges of the user running SeaMonkey. (CVE-2011-0080) An arbitrary memory write flaw was found in the way SeaMonkey handled out-of-memory conditions. A web page containing malicious content could possibly lead to arbitrary code execution with the privileges of the user running SeaMonkey. Several flaws were found in the processing of malformed web content. SeaMonkey is an open source web browser, email and newsgroup client, IRC chat client, and HTML editor. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.
#Seamonkey 2.0.14 update
The Red Hat Security Response Team has rated this update as having critical security impact. From Red Hat Security Advisory 2011:0473 : Updated SeaMonkey packages that fix several security issues are now available for Red Hat Enterprise Linux 4.
0 kommentar(er)
