Gentoo Security Advisory GLSA 200701-03 (mozilla-thunderbird) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 200701-03.

Solution

All Mozilla Thunderbird users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=mail-client/mozilla-thunderbird-1.5.0.9' All Mozilla Thunderbird binary release users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=mail-client/mozilla-thunderbird-bin-1.5.0.9' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200701-03 http://bugs.gentoo.org/show_bug.cgi?id=158571

Insight

Multiple vulnerabilities have been reported in Mozilla Thunderbird, some of which may allow the remote execution of arbitrary code.

Severity

Classification

CVE CVE-2006-6497, CVE-2006-6500, CVE-2006-6501, CVE-2006-6502, CVE-2006-6503, CVE-2006-6505

CVSS	Base Score: 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C

Related Vulnerabilities

Gentoo Security Advisory GLSA 200408-27 (Gaim)
Gentoo Security Advisory GLSA 200409-09 (mit-krb5)
Gentoo Security Advisory GLSA 200407-22 (dev-db/phpmyadmin)
Gentoo Security Advisory GLSA 200409-15 (Usermin)
Gentoo Security Advisory GLSA 200404-05 (ipsec-tools)

Take action and discover your vulnerabilities