CentOS Update For Seamonkey CESA-2011:1167 Centos4 I386 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

SeaMonkey is an open source web browser, email and newsgroup client, IRC chat client, and HTML editor. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause SeaMonkey to crash or, potentially, execute arbitrary code with the privileges of the user running SeaMonkey. (CVE-2011-2982) A flaw was found in the way SeaMonkey handled malformed JavaScript. A web page containing malicious JavaScript could cause SeaMonkey to access already freed memory, causing SeaMonkey to crash or, potentially, execute arbitrary code with the privileges of the user running SeaMonkey. (CVE-2011-2983) All SeaMonkey users should upgrade to these updated packages, which correct these issues. After installing the update, SeaMonkey must be restarted for the changes to take effect.

Affected

seamonkey on CentOS 4

References

http://lists.centos.org/pipermail/centos-announce/2011-August/017694.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-2982, CVE-2011-2983
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

CentOS Update for seamonkey CESA-2011:1167 centos4 i386

Take action and discover your vulnerabilities