Security Update for Mozilla Mail Products
Security fixes address a few vulnerabilities in Mozilla Thunderbird and SeaMonkey.
Mozilla Foundation Security Advisory MFSA-2009-33 reports security problems in Thunderbird mailer and mail components in the SeaMonkey suite. Crashes could occur from viewing messages with a multipart/alternative content type with a text/enhanced part, leading to a possible exploitation. Mozilla considers the impact "high."
An update for Thunderbird 2.0.0.22 solves this problem along with a few others of lesser impact. SeaMonkey users should resort to a 1.1.17 download, as this version resolves three other vulnerabilities of a "critical" impact. Among them are a crash with a memory corruption and JavaScript code given too high a privilege.
Issue 173/2015
Buy this issue as a PDF
News
-
Old Vulnerabilities Are Kept Alive Through Bad Configuration
HP's annual Cyber Risk report offers a bleak look at the state of IT.
-
Linus Torvalds Announces Linux 4.0
But what do the big numbers really mean?
-
Microsoft Frees CoreCLR
.NET Core execution engine is the basis for cross-platform .NET implementations.
-
New Trojan Attacks Linux Servers
The Xnote trojan hides itself on the target system and will launch a variety of attacks on command.
-
Cisco Releases Annual Security Report
Spammers go low-volume, and 90% of IE browsers are unpatched.
-
Zero Day Exploits Target Flash
Adobe scrambles to release patches for vulnerable Flash Player.
-
Intel Unveils Compute Stick
Four-inch-long computer on a stick lets you boot a full Linux system from any HDMI display device.
-
Obama Proposes Personal Data Notification Law
New statute would require companies to report break-ins to consumers.
-
TGXf Project Warns of File Transfer through Screen Pixels
Weird data transfer technique avoids all standard security measures.
-
Industry Giants Announce a Fix for the Password Mess
FIDO alliance declares the beginning of the end for old-style login authentication.