SecurityTracker: (Red Hat Issues Fix) Mozilla Thunderbird Auto-Update Can Be Spoofed in Certain Cases

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: Application (E-mail Client) > Mozilla Thunderbird

Vendors: Mozilla.org

(Red Hat Issues Fix) Mozilla Thunderbird Auto-Update Can Be Spoofed in Certain Cases

SecurityTracker Alert ID: 1016863

SecurityTracker URL: http://securitytracker.com/id/1016863

CVE Reference: CVE-2006-4567 (Links to External Site)

Updated: Sep 15 2006

Original Entry Date: Sep 15 2006

Impact: Execution of arbitrary code via network, Modification of user information, User access via network

Fix Available: Yes Vendor Confirmed: Yes

Version(s): prior to 1.5.0.7

Description: A vulnerability was reported in Mozilla Thunderbird. A remote user can cause arbitrary code to be executed on the target user's system.

If a target user accepts a self-signed certificate from a malicious site, the certificate can be used to attempt to exploit the auto-update system. A remote user that can spoof the DNS for the 'aus2.mozilla.org' site and the target user accepted the remote user's certificate for the spoofed Mozilla update site, then the remote user can hijack a subsequent auto-update check.

Jon Oberheide reported this vulnerability.

Impact: A remote user may be able to hijack auto-update sessions in certain cases to install arbitrary code on the target user's system.

Solution: Red Hat has released a fix.

Red Hat Enterprise Linux AS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/thunderbird-1.5.0.7-0.1.el4.src.rpm
2413151b4e16ade1fe176d40bd522c76 thunderbird-1.5.0.7-0.1.el4.src.rpm

i386:
6896ae3f5494f4c115635e80844da407 thunderbird-1.5.0.7-0.1.el4.i386.rpm
205ed25af7ac310d03614bd4b6e7da23 thunderbird-debuginfo-1.5.0.7-0.1.el4.i386.rpm

ia64:
4c0dc94ad855e68f21540e77f0eeff7d thunderbird-1.5.0.7-0.1.el4.ia64.rpm
a506ac14f97126175a64686ffce61f1b thunderbird-debuginfo-1.5.0.7-0.1.el4.ia64.rpm

ppc:
b890e674e915ae5c9d6c1c41e09c1097 thunderbird-1.5.0.7-0.1.el4.ppc.rpm
ff2269dc61f86234bc1fb4a2ed3ed872 thunderbird-debuginfo-1.5.0.7-0.1.el4.ppc.rpm

s390:
02b2dcbad7a3bb844beb78345c613bd2 thunderbird-1.5.0.7-0.1.el4.s390.rpm
de246964a9e02164799026322649bdc0 thunderbird-debuginfo-1.5.0.7-0.1.el4.s390.rpm

s390x:
c6873a707ab9d1849342722f0e050ff9 thunderbird-1.5.0.7-0.1.el4.s390x.rpm
72dcbc8255b2d8b85cc066901e5be1d3 thunderbird-debuginfo-1.5.0.7-0.1.el4.s390x.rpm

x86_64:
a043f3f87a513b2a50005b72893d9ef5 thunderbird-1.5.0.7-0.1.el4.x86_64.rpm
264e55cc9c4432d58be6d73b91484394 thunderbird-debuginfo-1.5.0.7-0.1.el4.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/thunderbird-1.5.0.7-0.1.el4.src.rpm
2413151b4e16ade1fe176d40bd522c76 thunderbird-1.5.0.7-0.1.el4.src.rpm

i386:
6896ae3f5494f4c115635e80844da407 thunderbird-1.5.0.7-0.1.el4.i386.rpm
205ed25af7ac310d03614bd4b6e7da23 thunderbird-debuginfo-1.5.0.7-0.1.el4.i386.rpm

x86_64:
a043f3f87a513b2a50005b72893d9ef5 thunderbird-1.5.0.7-0.1.el4.x86_64.rpm
264e55cc9c4432d58be6d73b91484394 thunderbird-debuginfo-1.5.0.7-0.1.el4.x86_64.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/thunderbird-1.5.0.7-0.1.el4.src.rpm
2413151b4e16ade1fe176d40bd522c76 thunderbird-1.5.0.7-0.1.el4.src.rpm

i386:
6896ae3f5494f4c115635e80844da407 thunderbird-1.5.0.7-0.1.el4.i386.rpm
205ed25af7ac310d03614bd4b6e7da23 thunderbird-debuginfo-1.5.0.7-0.1.el4.i386.rpm

ia64:
4c0dc94ad855e68f21540e77f0eeff7d thunderbird-1.5.0.7-0.1.el4.ia64.rpm
a506ac14f97126175a64686ffce61f1b thunderbird-debuginfo-1.5.0.7-0.1.el4.ia64.rpm

x86_64:
a043f3f87a513b2a50005b72893d9ef5 thunderbird-1.5.0.7-0.1.el4.x86_64.rpm
264e55cc9c4432d58be6d73b91484394 thunderbird-debuginfo-1.5.0.7-0.1.el4.x86_64.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/thunderbird-1.5.0.7-0.1.el4.src.rpm
2413151b4e16ade1fe176d40bd522c76 thunderbird-1.5.0.7-0.1.el4.src.rpm

i386:
6896ae3f5494f4c115635e80844da407 thunderbird-1.5.0.7-0.1.el4.i386.rpm
205ed25af7ac310d03614bd4b6e7da23 thunderbird-debuginfo-1.5.0.7-0.1.el4.i386.rpm

ia64:
4c0dc94ad855e68f21540e77f0eeff7d thunderbird-1.5.0.7-0.1.el4.ia64.rpm
a506ac14f97126175a64686ffce61f1b thunderbird-debuginfo-1.5.0.7-0.1.el4.ia64.rpm

x86_64:
a043f3f87a513b2a50005b72893d9ef5 thunderbird-1.5.0.7-0.1.el4.x86_64.rpm
264e55cc9c4432d58be6d73b91484394 thunderbird-debuginfo-1.5.0.7-0.1.el4.x86_64.rpm

The Red Hat advisory is available at:

https://rhn.redhat.com/errata/RHSA-2006-0677.html

Vendor URL: www.mozilla.org/security/announce/2006/mfsa2006-58.html (Links to External Site)

Cause: Authentication error

Underlying OS: Linux (Red Hat Enterprise)

Message History: This archive entry is a follow-up to the message listed below.

Mozilla Thunderbird Auto-Update Can Be Spoofed in Certain Cases

Source Message Contents


[Original Message Not Available for Viewing]

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
Copyright 2012, SecurityGlobal.net LLC