HTTP: Mozilla Products Malformed Regular Expressions
This signature detects attempts to exploit a known vulnerability in the Mozilla Internet suite. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the client.
Extended Description
The Mozilla Foundation has released six security advisories specifying vulnerabilities in Mozilla Firefox, SeaMonkey, and Thunderbird. These vulnerabilities allow attackers to: - execute arbitrary code - perform cross-site scripting attacks - supply malicious data through updates - inject arbitrary content - execute arbitrary JavaScript - crash affected applications and potentially execute arbitrary code. Other attacks may also be possible. The issues described here will be split into individual BIDs as more information becomes available. These issues are fixed in: - Mozilla Firefox version 1.5.0.7 - Mozilla Thunderbird version 1.5.0.7 - Mozilla SeaMonkey version 1.0.5
Affected Products
Mozilla thunderbird
Short Name
HTTP:STC:MOZILLA:MAL-REG-EX
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
CVE-2006-4566 Expressions Malformed Mozilla Products Regular bid:20042
Release Date
09/22/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Red_hat
Suse
Gnome
Gentoo
Rpath
Mozilla
Avaya
Debian
Sgi
Novell
Slackware
Ubuntu
Mandriva
Netscape
Galeon
CVSS Score
5.0