CVE-2008-0304 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2008-0304
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-0304

Description: Heap-based buffer overflow in Mozilla Thunderbird before 2.0.0.12 and SeaMonkey before 1.1.8 might allow remote attackers to execute arbitrary code via a crafted external-body MIME type in an e-mail message, related to an incorrect memory allocation during message preview.

CVE Status: Candidate

References: UBUNTU http://www.ubuntu.com/usn/usn-582-2 http://www.ubuntu.com/usn/usn-582-1 SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-239546-1 ST 1019504 SLACKWARE http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.445399 SAID Secunia Advisory: SA29133 Secunia Advisory: SA29167 Secunia Advisory: SA29098 Secunia Advisory: SA29211 Secunia Advisory: SA30327 Secunia Advisory: SA31043 Secunia Advisory: SA31253 MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:062 IDEFENSE http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=668 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200805-18.xml FEDORA DEBIAN http://www.debian.org/security/2008/dsa-1621 CONFIRM http://www.mozilla.org/security/announce/2008/mfsa2008-12.html CERT-VN 661651 BID 28012

Return to the previous page.