Vulnerability Note VU#887332

Mozilla mail products vulnerable to heap buffer overflow via Content-Type headers

Overview

Mozilla mail products contain a heap buffer overflow vulnerability in the way they process Content-Type headers. This may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.

I. Description

Mozilla Thunderbird and SeaMonkey contain a buffer overflow vulnerability. Both applications fail to properly process long Content-Type headers in external message bodies.

II. Impact

A remote, unauthenticated attacker may be able to execute arbitrary code on a vulnerable system

III. Solution

Upgrade

Mozilla has addressed these vulnerabilities in Thunderbird 1.5.0.9 and SeaMonkey 1.0.7.

Systems Affected

Vendor	Status	Date Updated
Mozilla	Vulnerable	20-Dec-2006

References

http://www.mozilla.org/security/announce/2006/mfsa2006-74.html
http://secunia.com/advisories/23439/
http://secunia.com/advisories/23591/
http://secunia.com/advisories/23598/
http://secunia.com/advisories/23514/
http://www.securityfocus.com/bid/21668

Credit

This vulnerability was reported in Mozilla Foundation Security Advisory 2006-74. Mozilla credits Georgi Guninski.

This document was written by Katie Steiner.

Other Information

Date Public	12/19/2006
Date First Published	12/20/2006 06:06:08 PM
Date Last Updated	01/31/2007
CERT Advisory
CVE Name	CVE-2006-6505
US-CERT Technical Alerts
Metric	26.72
Document Revision	25

If you have feedback, comments, or additional information about this vulnerability, please send us email.

Produced 2006 by US-CERT, a government organization
Disclaimers and copyright information

Get Adobe Reader