The host is installed with Mozilla firefox/thunderbird/seamonkey and is prone to information disclosure vulnerability.

Successful exploitation will let attackers to get sensitive information. Impact Level: Application

Upgrade to Mozilla Firefox version 3.6.27 or 7.0 or later For updates refer to http://www.mozilla.com/en-US/firefox/all.html Upgrade to SeaMonkey version to 2.4 or later http://www.mozilla.org/projects/seamonkey/ Upgrade to Thunderbird version to 3.1.18 or 7.0 or later http://www.mozilla.org/en-US/thunderbird/

The flaw is due to requests made using IPv6 syntax using XMLHttpRequest objects through a proxy may generate errors depending on proxy configuration for IPv6. The resulting error messages from the proxy may disclose sensitive data.

SeaMonkey version before 2.4 Thunderbird version before 3.1.18 and 5.0 through 6.0 Mozilla Firefox version before 3.6.26 and 4.x through 6.0

• http://secunia.com/advisories/47839/
• http://securitytracker.com/id/1026613
• http://www.mozilla.org/security/announce/2012/mfsa2012-02.html

---

Updated on 2015-03-25