CVE-2004-0718
CVSS7.5
发布时间 :2004-07-27 00:00:00
修订时间 :2016-10-17 22:48:09
NMCOPS    

[原文]The (1) Mozilla 1.6, (2) Firebird 0.7, (3) Firefox 0.8, and (4) Netscape 7.1 web browsers do not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.


[CNNVD]Mozilla Browser/Firefox未明JavaScript引擎整数溢出漏洞(CNNVD-200407-093)

        
        Mozilla Browser和Firefox都是非常流行的开放源码WEB浏览器。
        Mozilla和Firefox的JavaScript引擎中存在整数溢出漏洞,在有利的条件下,恶意的Web页面可能以运行Mozilla或Firefox用户的权限执行任意代码。
        

- CVSS (基础分值)

CVSS分值: 7.5 [严重(HIGH)]
机密性影响: [--]
完整性影响: [--]
可用性影响: [--]
攻击复杂度: [--]
攻击向量: [--]
身份认证: [--]

- CPE (受影响的平台与产品)

cpe:/a:firebirdsql:firebird:0.7
cpe:/a:mozilla:mozilla:1.6Mozilla Mozilla 1.6
cpe:/a:netscape:navigator:7.1Netscape Navigator 7.1

- OVAL (用于检测的技术细节)

oval:org.mitre.oval:def:9997The (1) Mozilla 1.6, (2) Firebird 0.7, (3) Firefox 0.8, and (4) Netscape 7.1 web browsers do not properly prevent a frame in one domain from...
oval:org.mitre.oval:def:4756Mozilla, Firebird, Firefox Frame Injection Vulnerability
*OVAL详细的描述了检测该漏洞的方法,你可以从相关的OVAL定义中找到更多检测该漏洞的技术细节。

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0718
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-0718
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200407-093
(官方数据源) CNNVD

- 其它链接及资源

ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt
(UNKNOWN)  SCO  SCOSA-2005.49
http://bugzilla.mozilla.org/show_bug.cgi?id=246448
(UNKNOWN)  CONFIRM  http://bugzilla.mozilla.org/show_bug.cgi?id=246448
http://marc.info/?l=bugtraq&m=109900315219363&w=2
(UNKNOWN)  FEDORA  FLSA:2089
http://www.debian.org/security/2005/dsa-777
(UNKNOWN)  DEBIAN  DSA-777
http://www.debian.org/security/2005/dsa-810
(UNKNOWN)  DEBIAN  DSA-810
http://www.mandriva.com/security/advisories?name=MDKSA-2004:082
(UNKNOWN)  MANDRAKE  MDKSA-2004:082
http://www.novell.com/linux/security/advisories/2004_36_mozilla.html
(UNKNOWN)  SUSE  SUSE-SA:2004:036
http://www.redhat.com/support/errata/RHSA-2004-421.html
(UNKNOWN)  REDHAT  RHSA-2004:421
http://www.securityfocus.com/bid/15495
(UNKNOWN)  BID  15495
http://xforce.iss.net/xforce/xfdb/1598
(VENDOR_ADVISORY)  XF  http-frame-spoof(1598)

- 漏洞信息

Mozilla Browser/Firefox未明JavaScript引擎整数溢出漏洞
高危 其他
2004-07-27 00:00:00 2005-10-20 00:00:00
远程  
        
        Mozilla Browser和Firefox都是非常流行的开放源码WEB浏览器。
        Mozilla和Firefox的JavaScript引擎中存在整数溢出漏洞,在有利的条件下,恶意的Web页面可能以运行Mozilla或Firefox用户的权限执行任意代码。
        

- 公告与补丁

        厂商补丁:
        Mozilla
        -------
        目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
        * Mozilla Upgrade Firefox 1.0.7
        
        http://www.mozilla.org/products/firefox/

        
        * Mozilla Upgrade Mozilla 1.7.12
        
        http://www.mozilla.org/products/mozilla1.x/

- 漏洞信息 (F40036)

Debian Linux Security Advisory 810-1 (PacketStormID:F40036)
2005-09-14 00:00:00
Debian  debian.org
advisory
linux,debian
CVE-2004-0718,CVE-2005-1937,CVE-2005-2260,CVE-2005-2261,CVE-2005-2263,CVE-2005-2265,CVE-2005-2266,CVE-2005-2268,CVE-2005-2269,CVE-2005-2270
[点击下载]

Debian Security Advisory DSA 810-1 - Several problems have been discovered in Mozilla, the browser of the Mozilla suite. Since the usual praxis of backporting apparently does not work for this package, this update is basically version 1.7.10 with the version number rolled back, and hence still named 1.7.8.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 810-1                     security@debian.org
http://www.debian.org/security/                             Martin Schulze
September 13th, 2005                    http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : mozilla
Vulnerability  : several
Problem type   : remote
Debian-specific: no
CVE IDs        : CAN-2004-0718 CAN-2005-1937 CAN-2005-2260 CAN-2005-2261
                 CAN-2005-2263 CAN-2005-2265 CAN-2005-2266 CAN-2005-2268
                 CAN-2005-2269 CAN-2005-2270 
BugTraq ID     : 14242

Several problems have been discovered in Mozilla, the we browser of
the Mozilla suite.  Since the usual praxis of backporting apparently
does not work for this package, this update is basically version
1.7.10 with the version number rolled back, and hence still named
1.7.8.  The Common Vulnerabilities and Exposures project identifies
the following problems:

CAN-2004-0718, CAN-2005-1937

    A vulnerability has been discovered in Mozilla that allows remote
    attackers to inject arbitrary Javascript from one page into the
    frameset of another site.

CAN-2005-2260

    The browser user interface does not properly distinguish between
    user-generated events and untrusted synthetic events, which makes
    it easier for remote attackers to perform dangerous actions that
    normally could only be performed manually by the user.

CAN-2005-2261

    XML scripts ran even when Javascript disabled.

CAN-2005-2263

    It is possible for a remote attacker to execute a callback
    function in the context of another domain (i.e. frame).

CAN-2005-2265

    Missing input sanitising of InstallVersion.compareTo() can cause
    the application to crash.

CAN-2005-2266

    Remote attackers could steal sensitive information such as cookies
    and passwords from web sites by accessing data in alien frames.

CAN-2005-2268

    It is possible for a Javascript dialog box to spoof a dialog box
    from a trusted site and facilitates phishing attacks.

CAN-2005-2269

    Remote attackers could modify certain tag properties of DOM nodes
    that could lead to the execution of arbitrary script or code.

CAN-2005-2270

    The Mozilla browser familie does not properly clone base objects,
    which allows remote attackers to execute arbitrary code.

For the stable distribution (sarge) these problems have been fixed in
version 1.7.8-1sarge2.

For the unstable distribution (sid) these problems have been fixed in
version 1.7.10-1.

We recommend that you upgrade your Mozilla packages.


Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge2.dsc
      Size/MD5 checksum:     1123 c48d385962c84c57d6085e04483fe01c
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge2.diff.gz
      Size/MD5 checksum:   397348 e786529434e3cd0d0cdc9371fe5d727c
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8.orig.tar.gz
      Size/MD5 checksum: 30589520 13c0f0331617748426679e8f2e9f537a

  Alpha architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge2_alpha.deb
      Size/MD5 checksum:   168068 71495f11fb3103e6ae2bc5d9e7fdb766
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge2_alpha.deb
      Size/MD5 checksum:   140940 cd47c5563a95fa7c3ebb2e9455eb65a0
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge2_alpha.deb
      Size/MD5 checksum:   184940 d0860ce58bee848587f6bb321361ce0d
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge2_alpha.deb
      Size/MD5 checksum:   850514 9a253c1024e4b8c08647823375641267
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge2_alpha.deb
      Size/MD5 checksum:     1032 73f53f229ce501153cea5fb09b89f6d4
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge2_alpha.deb
      Size/MD5 checksum: 11470982 37ab56233fbdcbf4e9027c43661347d7
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge2_alpha.deb
      Size/MD5 checksum:   403288 ac5b62f33b82ab3921435e921b581158
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge2_alpha.deb
      Size/MD5 checksum:   158338 44cc055102d69e1e7d5c25c0c5da6eee
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge2_alpha.deb
      Size/MD5 checksum:  3356396 791b6e0fccd2d59afc5fb40988917ac3
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge2_alpha.deb
      Size/MD5 checksum:   122286 a3cb6e9c468aafab34fe6221202de18b
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge2_alpha.deb
      Size/MD5 checksum:   204160 d6b515db021120f4eb6db0db4b9ee626
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge2_alpha.deb
      Size/MD5 checksum:  1936994 39fe2ed6db5dec1fb1a5088b824a290d
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge2_alpha.deb
      Size/MD5 checksum:   212304 4bd374977a806726f6fbfc1def975530

  AMD64 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge2_amd64.deb
      Size/MD5 checksum:   168060 ebc548f1d781de96a079f3342dc82b3b
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge2_amd64.deb
      Size/MD5 checksum:   140056 77c8a52e2d8266609a7e525af4161df8
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge2_amd64.deb
      Size/MD5 checksum:   184940 6ffbb6b06dbe9ee8596786e210ae710a
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge2_amd64.deb
      Size/MD5 checksum:   708872 58228c54d8704f159f13d6e6f0150f31
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge2_amd64.deb
      Size/MD5 checksum:     1028 413cfcb6a49d5b1764030288c0c45a74
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge2_amd64.deb
      Size/MD5 checksum: 10941658 7f0bad760bc57b613572bb162bb63886
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge2_amd64.deb
      Size/MD5 checksum:   403286 90bb2fb7d737686de2b531614d78727c
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge2_amd64.deb
      Size/MD5 checksum:   158336 15adac56a6752d8f1d1f5f7832e25f11
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge2_amd64.deb
      Size/MD5 checksum:  3348382 9d44b8103a1b53f10774906824b91d66
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge2_amd64.deb
      Size/MD5 checksum:   121182 134b9b5443cb5b4c9b56bc7ae296bd8f
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge2_amd64.deb
      Size/MD5 checksum:   204150 2d1402c6cfe40172fe4631be7c6a059c
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge2_amd64.deb
      Size/MD5 checksum:  1935916 466bdf7d2ee2702143e75e4736e732fb
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge2_amd64.deb
      Size/MD5 checksum:   204124 b21193a3b75a2a0cd0811c8c2f9a10b1

  ARM architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge2_arm.deb
      Size/MD5 checksum:   168070 5cb0bbb3372c9dc7dcb6deb845e8921c
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge2_arm.deb
      Size/MD5 checksum:   118450 83915533563d108467adbcc9d83a7649
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge2_arm.deb
      Size/MD5 checksum:   184952 492eef333e3d1d54074940c33c667703
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge2_arm.deb
      Size/MD5 checksum:   626102 7b280c86df88059ecaf7380fb5c26892
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge2_arm.deb
      Size/MD5 checksum:     1034 c2b47c4bc5534586625341deb2ee2437
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge2_arm.deb
      Size/MD5 checksum:  9199040 1d7c685d1c2debfed5294f7eea14bf12
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge2_arm.deb
      Size/MD5 checksum:   403312 325ccb41c6cc082addce53aa67b321f2
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge2_arm.deb
      Size/MD5 checksum:   158352 13d0923b5d2b406228c76e797ff4af41
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge2_arm.deb
      Size/MD5 checksum:  3340106 c198d17aa10a4eff4e383c2816185241
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge2_arm.deb
      Size/MD5 checksum:   112670 c2f9a27a1c01550c0f9e4797568d6c7a
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge2_arm.deb
      Size/MD5 checksum:   204162 e982f007a93b53e5137322fd8eab2ccd
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge2_arm.deb
      Size/MD5 checksum:  1604384 ca59ad05f353e5ab3660850559fce1ff
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge2_arm.deb
      Size/MD5 checksum:   168720 0a519a5e78e1e364640941e643ce91ce

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge2_i386.deb
      Size/MD5 checksum:   170348 7e785c6ca8fccb661b4dec78aa7251d8
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge2_i386.deb
      Size/MD5 checksum:   130860 072f3d046ce9cdc9f78f9b4ffd2e892b
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge2_i386.deb
      Size/MD5 checksum:   187128 6683024c42d5d434eb0014588af87b0f
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge2_i386.deb
      Size/MD5 checksum:   655690 5ba9ea0be3b85aed6bad309f610c841a
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge2_i386.deb
      Size/MD5 checksum:     1032 8401dcc3b9c2ac3c5e956d4d93c43724
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge2_i386.deb
      Size/MD5 checksum: 10322448 b56563023bd65f213db1f0a138b4a38f
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge2_i386.deb
      Size/MD5 checksum:   403494 dd9f36972a06aa2e0b153fa9f3d0009f
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge2_i386.deb
      Size/MD5 checksum:   158354 16a81c7add5e724e2dd65396a3121350
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge2_i386.deb
      Size/MD5 checksum:  3591808 fbfcb714a164679a87b41f1896eeef4a
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge2_i386.deb
      Size/MD5 checksum:   116676 3f8cbaee36be34d4709a600ec0d3cf0a
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge2_i386.deb
      Size/MD5 checksum:   204164 9694bdc6d612132e760a9b645cc7d7d1
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge2_i386.deb
      Size/MD5 checksum:  1816046 2cc3dddc6921aafdf749c31a9e69e2e6
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge2_i386.deb
      Size/MD5 checksum:   192476 eebc8cefb2d6689f1e708cd915fa93ad

  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge2_ia64.deb
      Size/MD5 checksum:   168070 0881acb46827879db0bcfac436d076c0
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge2_ia64.deb
      Size/MD5 checksum:   168438 1e7d4feb5a00013140e8c3d233af4927
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge2_ia64.deb
      Size/MD5 checksum:   184934 c541a352fe1bf5db50b3c1eef95ae94f
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge2_ia64.deb
      Size/MD5 checksum:   960808 26086056a93ccc4141ae97127ad3f484
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge2_ia64.deb
      Size/MD5 checksum:     1034 129033c34c302977f8eda398917262a1
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge2_ia64.deb
      Size/MD5 checksum: 12937236 15a17a96cb3d5deff80b104e09a151e1
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge2_ia64.deb
      Size/MD5 checksum:   403280 d9aa6683b601da268e890d9cff611c3f
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge2_ia64.deb
      Size/MD5 checksum:   158336 7688d7c23e9cce834bd97e041bcd842f
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge2_ia64.deb
      Size/MD5 checksum:  3376288 aa6dc0570cbe163f6c1b916af44a6b47
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge2_ia64.deb
      Size/MD5 checksum:   125582 25624cd23f1b06e2b72b5c062e46c4a3
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge2_ia64.deb
      Size/MD5 checksum:   204152 3e1b98b0d5b8fbbb33a63c65a9c19397
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge2_ia64.deb
      Size/MD5 checksum:  2302106 d9d5865cfc06176f49c574cff0f0671c
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge2_ia64.deb
      Size/MD5 checksum:   242280 92ccb9ef6c88f334d356f73d0b78ae0e

  HP Precision architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge2_hppa.deb
      Size/MD5 checksum:   168074 dae6210677671505fcf2f9663514d249
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge2_hppa.deb
      Size/MD5 checksum:   150966 afc1f1aa945853d771d825d6b135af30
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge2_hppa.deb
      Size/MD5 checksum:   184960 818c556a0107b8c0afc9058be4ab79fd
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge2_hppa.deb
      Size/MD5 checksum:   748850 d7fd064e3c23b2d4c2d15cfebb88af19
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge2_hppa.deb
      Size/MD5 checksum:     1040 803e211b40f9f585fd492bd7ae8742eb
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge2_hppa.deb
      Size/MD5 checksum: 12147934 498e46abae1f0864ff3dab3911d53346
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge2_hppa.deb
      Size/MD5 checksum:   403296 f38f3ad7af0741208cf1e2de70ce6a95
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge2_hppa.deb
      Size/MD5 checksum:   158344 f203b4d7e2385a052efb355f58a6709c
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge2_hppa.deb
      Size/MD5 checksum:  3356940 5a5f23ead626d58f695e208642d3220a
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge2_hppa.deb
      Size/MD5 checksum:   123518 1570a2bc025597c6ea950c9f005406f5
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge2_hppa.deb
      Size/MD5 checksum:   204162 bb1ef48e12ac74e62978abac7d6eff0b
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge2_hppa.deb
      Size/MD5 checksum:  2135064 7d61e164827ebd20365207bbcc284bc5
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge2_hppa.deb
      Size/MD5 checksum:   216088 ea18a73aa8dea41767d6649feb749581

  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge2_m68k.deb
      Size/MD5 checksum:   168088 e9f99c03a9698f26740f08e39e8b07a0
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge2_m68k.deb
      Size/MD5 checksum:   120116 8958d53fd8586b410fb9467e040dc50b
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge2_m68k.deb
      Size/MD5 checksum:   184980 d88a4008218b34e74010a606cc9d0e70
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge2_m68k.deb
      Size/MD5 checksum:   594176 064a675432b3fef03094ed00f2c71983
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge2_m68k.deb
      Size/MD5 checksum:     1046 14a582bd1e52980b866a98f51f9f1e07
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge2_m68k.deb
      Size/MD5 checksum:  9692978 daf3134326810458f79614d3181d7ccf
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge2_m68k.deb
      Size/MD5 checksum:   403390 936849bbe19beca05056c5f80b8fa7c2
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge2_m68k.deb
      Size/MD5 checksum:   158388 b13b3bcbcba5c311a713eaa5747889c1
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge2_m68k.deb
      Size/MD5 checksum:  3335888 708a201c6574ecd4f4d0377ab5bad746
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge2_m68k.deb
      Size/MD5 checksum:   114500 014e6d9be2ba778548ea4e0ff1b54899
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge2_m68k.deb
      Size/MD5 checksum:   204220 c33a2696b684fb9a066dfcfa9b9a705a
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge2_m68k.deb
      Size/MD5 checksum:  1683002 0cd9307611e9b6690e4466b48d796f0a
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge2_m68k.deb
      Size/MD5 checksum:   174654 5f9eaff11bc36bef653aee62acca4f7d

  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge2_mips.deb
      Size/MD5 checksum:   168076 97520f62f7d6a38cd4b5f33fff681b76
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge2_mips.deb
      Size/MD5 checksum:   134914 7db10fc18b885c299a4d82049320a001
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge2_mips.deb
      Size/MD5 checksum:   184952 ab8e65c716546400065ba7ce5d53153f
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge2_mips.deb
      Size/MD5 checksum:   719936 89acab17025391bb29374468715e7a1d
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge2_mips.deb
      Size/MD5 checksum:     1036 4204b39c628ce8bdc1ba6da591f41c56
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge2_mips.deb
      Size/MD5 checksum: 10715608 2313c5e6a36d426364925a032c492c98
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge2_mips.deb
      Size/MD5 checksum:   403266 d159863ed36ad648172c7c5d46ae5045
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge2_mips.deb
      Size/MD5 checksum:   158340 ac0a2664084a801d4bbef6cc0ea89353
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge2_mips.deb
      Size/MD5 checksum:  3356434 e59a7cf95f0c159341a990d4fc8d05f4
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge2_mips.deb
      Size/MD5 checksum:   117656 cd3315641a90c294aee2574010bb30bc
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge2_mips.deb
      Size/MD5 checksum:   204158 8fc79bbf308924cba6b785a05dd35408
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge2_mips.deb
      Size/MD5 checksum:  1795434 3bcc1f3f6a5f4b8f52e633be80fd87aa
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge2_mips.deb
      Size/MD5 checksum:   189690 297a7aa85d0d8f0658c5a61248cd0a98

  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge2_mipsel.deb
      Size/MD5 checksum:   168072 c12666c85419bc664a8be5b04ef976b8
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge2_mipsel.deb
      Size/MD5 checksum:   134866 a32b662a6c86b5c93912018873bbe14e
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge2_mipsel.deb
      Size/MD5 checksum:   184950 2b039b1d254385b6eaf855fbe8fb7132
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge2_mipsel.deb
      Size/MD5 checksum:   709336 37caa6a5326cb8aea305c8f9a6af32c0
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge2_mipsel.deb
      Size/MD5 checksum:     1038 c97306a0eb4ed5c9ee2800290158c83e
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge2_mipsel.deb
      Size/MD5 checksum: 10595158 34212f9a7487505e81c04093a41abdc7
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge2_mipsel.deb
      Size/MD5 checksum:   403294 fa1458956536f2f036a3f4eb113bcfb6
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge2_mipsel.deb
      Size/MD5 checksum:   158352 f65a77248ef9c44c43862e288bf2789a
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge2_mipsel.deb
      Size/MD5 checksum:  3357124 32a5a9065cda7851323730f64809a96e
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge2_mipsel.deb
      Size/MD5 checksum:   117210 4bc00d66c021344be91f6221857372bd
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge2_mipsel.deb
      Size/MD5 checksum:   204172 38f9894327d84061fde5a5a342a1795a
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge2_mipsel.deb
      Size/MD5 checksum:  1777584 cff43e7d6aba391a4c52af2ef6b5c253
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge2_mipsel.deb
      Size/MD5 checksum:   187270 e608cad23cb2f499e7ce68bc7756fc23

  PowerPC architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge2_powerpc.deb
      Size/MD5 checksum:   168072 d566f85043291497ecab6de59ee021c8
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge2_powerpc.deb
      Size/MD5 checksum:   125444 5ad46d6b89546f8159083c9f8c4807c7
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge2_powerpc.deb
      Size/MD5 checksum:   184944 6c6df33ad4b0fae0cf53e902a0c3a781
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge2_powerpc.deb
      Size/MD5 checksum:   713092 c1cfc0824749c3a7f0a4260df6082383
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge2_powerpc.deb
      Size/MD5 checksum:     1034 811232581ba22342ae67479df677bde2
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge2_powerpc.deb
      Size/MD5 checksum:  9689616 12eae02cbaa8864b8ed13747cc110e2f
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge2_powerpc.deb
      Size/MD5 checksum:   403276 4a1b3b68ffd9bce118f1e20fc8b6e17a
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge2_powerpc.deb
      Size/MD5 checksum:   158326 52c593909f4c0c8981829865ed7335c0
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge2_powerpc.deb
      Size/MD5 checksum:  3338900 60878c413134449e0a0d833b07a04a41
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge2_powerpc.deb
      Size/MD5 checksum:   114598 621cd8aaa66359612b29e96c205882f9
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge2_powerpc.deb
      Size/MD5 checksum:   204144 e9e9d38bbc0ed111abbe89ea8a34486e
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge2_powerpc.deb
      Size/MD5 checksum:  1642898 2ec4a63af3d500dc51bf43f706df09b3
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge2_powerpc.deb
      Size/MD5 checksum:   175472 ee72358103b1a2d0fcd33170bf329218

  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge2_s390.deb
      Size/MD5 checksum:   168066 bb029cfe324df8ff5a0a139a7bee81e4
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge2_s390.deb
      Size/MD5 checksum:   150758 85105ca33cea3d6bb63eceff6748d4f1
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge2_s390.deb
      Size/MD5 checksum:   184946 6f159d4596046e06885814a35a3c5dec
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge2_s390.deb
      Size/MD5 checksum:   793116 52c8b0d8927cc8bfd436c52c103b0e2b
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge2_s390.deb
      Size/MD5 checksum:     1034 61f6ad552c0c104a15f737be3358a2fb
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge2_s390.deb
      Size/MD5 checksum: 11314290 53fba6a4771bcee2de56b581d5476dd3
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge2_s390.deb
      Size/MD5 checksum:   403282 11652f644b75ee4b59a17b21693444f0
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge2_s390.deb
      Size/MD5 checksum:   158328 773cffe91efe86e215eeef98cefe2e1a
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge2_s390.deb
      Size/MD5 checksum:  3351392 4b341b00ff05ec6d8b8f567cdeafc1b6
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge2_s390.deb
      Size/MD5 checksum:   121352 ca130bee4f57d23d0848c66c9ead1192
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge2_s390.deb
      Size/MD5 checksum:   204152 5e0844c496a9d8b349be8e03761f5ed7
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge2_s390.deb
      Size/MD5 checksum:  1944690 5fbec86aa3aa9c5c67873f95c926e3d4
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge2_s390.deb
      Size/MD5 checksum:   213352 082c751f32becfeacec49f6cca24cfd6

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge2_sparc.deb
      Size/MD5 checksum:   168076 b55e919e10d14ab7a30f0e1d0ed82600
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge2_sparc.deb
      Size/MD5 checksum:   122664 05c489c8d5aff18bbc984fe11b21ab6d
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge2_sparc.deb
      Size/MD5 checksum:   184944 78fc570962a240c1daab9e5fa87f1510
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge2_sparc.deb
      Size/MD5 checksum:   666918 b00445422c81c65b70c0580155c05042
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge2_sparc.deb
      Size/MD5 checksum:     1036 801f06fbe1848b0947346e7fd0148842
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge2_sparc.deb
      Size/MD5 checksum:  9361940 a6a6c0de916ec684904fbabb20f340f6
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge2_sparc.deb
      Size/MD5 checksum:   403268 4de60df569eb7bd6966dd7e1a068707a
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge2_sparc.deb
      Size/MD5 checksum:   158340 5b4d1e2a6952e6618fd11c3bc1cb16d7
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge2_sparc.deb
      Size/MD5 checksum:  3339998 e736e31d99728b428fafb607e0f87eb8
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge2_sparc.deb
      Size/MD5 checksum:   112530 b30f41effa63e6f6f0db32c2541de41c
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge2_sparc.deb
      Size/MD5 checksum:   204144 e79ab2d5d5d905c7b9b70b3925cea865
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge2_sparc.deb
      Size/MD5 checksum:  1583702 89152d65a66b9a61f075a7f7dcf4d943
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge2_sparc.deb
      Size/MD5 checksum:   167916 9198f8cde42a9f0679e2875924bf9e56


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFDJsxMW5ql+IAeqTIRAt5rAJ9L9+CBfglvuIRAuCkja8P0DOEJwACePGJa
y4VI016PhW/fqn0sY2+nl04=
=pr4T
-----END PGP SIGNATURE-----

    

- 漏洞信息 (F39527)

Debian Linux Security Advisory 778-1 (PacketStormID:F39527)
2005-08-24 00:00:00
Debian  debian.org
advisory,web,arbitrary,sql injection
linux,debian
CVE-2004-0718,CVE-2005-2556,CVE-2005-2557
[点击下载]

Debian Security Advisory DSA 778-1 - Two security related problems have been discovered in Mantis, a web-based bug tracking system. The bugs related to arbitrary HTML and SQL injection flaws.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 778-1                     security@debian.org
http://www.debian.org/security/                             Martin Schulze
August 19th, 2005                       http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : mantis
Vulnerability  : missing input sanitising
Problem-Type   : remote
Debian-specific: no
CVE ID         : CAN-2005-2556 CAN-2005-2557

Two security related problems have been discovered in Mantis, a
web-based bug tracking system.  The Common Vulnerabilities and
Exposures project identifies the following problems:

CAN-2005-2556

    A remote attacker could insert arbitrary SQL code into SQL
    statements.

CAN-2005-2557

    A remote attacker was able to insert arbitrary HTML code bug
    reports, hence, cross site scripting.

The old stable distribution (woody) does not seem to be affected by
these problems.

For the stable distribution (sarge) these problems have been fixed in
version 0.19.2-4.

For the unstable distribution (sid) these problems have been fixed in
version 0.19.2-4.

We recommend that you upgrade your mantis package.


Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/m/mantis/mantis_0.19.2-4.dsc
      Size/MD5 checksum:      568 645a849f54cada06624b040ca106310f
    http://security.debian.org/pool/updates/main/m/mantis/mantis_0.19.2-4.diff.gz
      Size/MD5 checksum:    34601 311c66f058bfd06ef02d97dc0dad4880
    http://security.debian.org/pool/updates/main/m/mantis/mantis_0.19.2.orig.tar.gz
      Size/MD5 checksum:  1298615 042c42c6de3bc536181391c1e9b25db3

  Architecture independent components:

    http://security.debian.org/pool/updates/main/m/mantis/mantis_0.19.2-4_all.deb
      Size/MD5 checksum:   895224 afa2f33377b412779d5710e94b5f68e3


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFDBeXcW5ql+IAeqTIRAnZVAKCz19oHpGJt//rRjb6PaPkKGnlQFACfTK4j
kveWIZjiSoKyZ1d8A8xetEA=
=iS8/
-----END PGP SIGNATURE-----

    

- 漏洞信息 (F39452)

Debian Linux Security Advisory 777-1 (PacketStormID:F39452)
2005-08-18 00:00:00
Debian  debian.org
advisory,remote,arbitrary,javascript
linux,debian
CVE-2004-0718,CVE-2005-1937
[点击下载]

Debian Security Advisory DSA 777-1 - A vulnerability has been discovered in Mozilla and Mozilla Firefox that allows remote attackers to inject arbitrary Javascript from one page into the frameset of another site. Thunderbird is not affected by this and Galeon will be automatically fixed as it uses Mozilla components.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 777-1                     security@debian.org
http://www.debian.org/security/                             Martin Schulze
August 17th, 2005                       http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : mozilla
Vulnerability  : frame injection spoofing
Problem-Type   : remote
Debian-specific: no
CVE ID         : CAN-2004-0718 CAN-2005-1937
BugTraq ID     : 14242

A vulnerability has been discovered in Mozilla and Mozilla Firefox
that allows remote attackers to inject arbitrary Javascript from one
page into the frameset of another site.  Thunderbird is not affected
by this and Galeon will be automatically fixed as it uses Mozilla
components.

For the stable distribution (sarge) this problem has been fixed in
version 1.7.8-1sarge1.

For the unstable distribution (sid) this problem has been fixed in
version 1.7.10-1.

We recommend that you upgrade your Mozilla package.


Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge1.dsc
      Size/MD5 checksum:     1123 7ab0311756a0de3407f84b923b053533
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge1.diff.gz
      Size/MD5 checksum:   307355 2012677529e86d28c0e5a24294903ad3
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8.orig.tar.gz
      Size/MD5 checksum: 30589520 13c0f0331617748426679e8f2e9f537a

  Alpha architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge1_alpha.deb
      Size/MD5 checksum:   168066 fe5db18b73d89c677c4b4a3635793b83
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge1_alpha.deb
      Size/MD5 checksum:   140542 9a988dc0e6fc3901bf16cff43bd55d13
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge1_alpha.deb
      Size/MD5 checksum:   184952 3495f9cbbb3f6f7fd9198b98fc1c25f2
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge1_alpha.deb
      Size/MD5 checksum:   850120 58e878f30f82b120f332c22f974c9330
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge1_alpha.deb
      Size/MD5 checksum:     1032 b32e47e0f786e4ee3896b76a53499a42
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge1_alpha.deb
      Size/MD5 checksum: 11462324 c1b82022b4eaa7d133e6cbe86868e57f
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge1_alpha.deb
      Size/MD5 checksum:   403296 421577f02c3b6b88615f4339bd18d0c3
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge1_alpha.deb
      Size/MD5 checksum:   158346 059e84b66aa680681923deed7ba66b7e
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge1_alpha.deb
      Size/MD5 checksum:  3355028 dc43b577acdc4c40c089567b53e1cd0e
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge1_alpha.deb
      Size/MD5 checksum:   122306 6d4aba83fd04bc34a36dd13a6dcd04fb
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge1_alpha.deb
      Size/MD5 checksum:   204150 e2db0c815caeb3c9fef57cb1a4812591
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge1_alpha.deb
      Size/MD5 checksum:  1936702 f24ebcb7ecbdf953992ad297903bff51
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge1_alpha.deb
      Size/MD5 checksum:   212302 d78b38041bc90a6ca78c1f8e57e3e3b3

  AMD64 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge1_amd64.deb
      Size/MD5 checksum:   168056 01fe31ac723a4a82c3c5d7c8f32df92c
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge1_amd64.deb
      Size/MD5 checksum:   139664 a2a501b2435eea376234a9530125f56e
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge1_amd64.deb
      Size/MD5 checksum:   184944 664061d174dde41a9a640cddf67ca506
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge1_amd64.deb
      Size/MD5 checksum:   708484 2d5e7ecc4753425b70863b9e046c6000
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge1_amd64.deb
      Size/MD5 checksum:     1030 ffceb9ef440f5ae3477db3f7084db101
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge1_amd64.deb
      Size/MD5 checksum: 10937902 cf64fa09458651e25086046db6673e62
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge1_amd64.deb
      Size/MD5 checksum:   403284 41319f34441400e2c520bcbdeda64cc2
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge1_amd64.deb
      Size/MD5 checksum:   158338 40ed63c199d675695f008ef754432935
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge1_amd64.deb
      Size/MD5 checksum:  3345598 99b00e6c50d91a2dae53a44d50faff60
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge1_amd64.deb
      Size/MD5 checksum:   121176 de6eb44c40cfc9bc183827d199381a96
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge1_amd64.deb
      Size/MD5 checksum:   204152 be4c266252b3377f94b2f198f880d457
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge1_amd64.deb
      Size/MD5 checksum:  1935806 5f32496d2cfadfbc1b9c2e6c02fd6c73
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge1_amd64.deb
      Size/MD5 checksum:   204116 98cdcfed83d173f8197c0d23d298be99

  ARM architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge1_arm.deb
      Size/MD5 checksum:   168072 6f5a448752b8e6ba6325a8ff2a2df67c
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge1_arm.deb
      Size/MD5 checksum:   118050 9bb76ef7f7770fe15a8bfc3ea897deea
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge1_arm.deb
      Size/MD5 checksum:   184954 2e46576a7d6d998551325d8eb2f0c74d
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge1_arm.deb
      Size/MD5 checksum:   625708 12f00280e96540ff0abe74c105546cd4
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge1_arm.deb
      Size/MD5 checksum:     1034 fa3c6e72a47795e1ef413bdd38826d33
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge1_arm.deb
      Size/MD5 checksum:  9194340 61b44bd9352c9e2bc38ee840220df3e1
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge1_arm.deb
      Size/MD5 checksum:   403308 da3d8b0e79299e44654d7a1a08e961bc
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge1_arm.deb
      Size/MD5 checksum:   158338 11d61ce4adfec687b96ec6fee88776d3
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge1_arm.deb
      Size/MD5 checksum:  3338606 cb07fb3f9ace01d8da22ded6cd86ff2e
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge1_arm.deb
      Size/MD5 checksum:   112664 e0d808afb09214b47493e4a0cab432c1
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge1_arm.deb
      Size/MD5 checksum:   204150 90d5b95d8ec5f3818e99f5fc7cfa16f6
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge1_arm.deb
      Size/MD5 checksum:  1604236 4b9b9e5e9bedd501bfee53963681fb07
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge1_arm.deb
      Size/MD5 checksum:   168716 1b0ff67888379dc8a87b8983af97b0d3

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge1_i386.deb
      Size/MD5 checksum:   168074 da8497a0b770f1c41d4195fc6356b461
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge1_i386.deb
      Size/MD5 checksum:   130372 98fd23761563d3942df4473c3243d978
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge1_i386.deb
      Size/MD5 checksum:   184956 d0b65b504cf226c8cb1578ce6bea7422
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge1_i386.deb
      Size/MD5 checksum:   654240 9d25a31d785f3785f1444bb6df5c97ae
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge1_i386.deb
      Size/MD5 checksum:     1030 c11512ac6c0aa2d70acf5c563a829554
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge1_i386.deb
      Size/MD5 checksum: 10287026 ffdc113a91821c82b1d6ef7c6c920bef
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge1_i386.deb
      Size/MD5 checksum:   403286 4b059c14da633f42716aba12bd9a0cca
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge1_i386.deb
      Size/MD5 checksum:   158342 3aa7215f4cb1261589ab13304f44c117
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge1_i386.deb
      Size/MD5 checksum:  3344356 e7a20515ccc6db34c74f3e7f51f8fffb
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge1_i386.deb
      Size/MD5 checksum:   116216 630b0ecb082b2d33a27019f87f4bfadf
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge1_i386.deb
      Size/MD5 checksum:   204162 41ba78c68277097f602c5195e04ec2a9
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge1_i386.deb
      Size/MD5 checksum:  1811096 f061f50b17ea899da27c1fba26430a47
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge1_i386.deb
      Size/MD5 checksum:   192308 908067740b8466440ed33e8910a99db2

  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge1_ia64.deb
      Size/MD5 checksum:   168048 74baf8eb1a9cfa0584deeaa742435903
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge1_ia64.deb
      Size/MD5 checksum:   168052 27e30141c62b2e7f9aa2976d25883fde
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge1_ia64.deb
      Size/MD5 checksum:   184918 f2d4b2a556c70df07761df3fc9e20495
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge1_ia64.deb
      Size/MD5 checksum:   960434 0172fe253a8741fdf77c4d5c6110f3fb
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge1_ia64.deb
      Size/MD5 checksum:     1030 e7df4da73c1fbb7bbb5ff453e3ed4250
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge1_ia64.deb
      Size/MD5 checksum: 12927484 7391b9e306b8f8fcb2d909274dc1e802
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge1_ia64.deb
      Size/MD5 checksum:   403272 e2b4f122371aef71fdae48f8da45b2fa
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge1_ia64.deb
      Size/MD5 checksum:   158328 48fcceb9b1cb0767ad0fe789e4fa543f
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge1_ia64.deb
      Size/MD5 checksum:  3374932 85908c1696361658be81ac9af571e0ae
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge1_ia64.deb
      Size/MD5 checksum:   125578 26db6256c5e0328ff1341b5121d13fb7
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge1_ia64.deb
      Size/MD5 checksum:   204148 0b867cbb015c00b21f6ed49e3c00767c
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge1_ia64.deb
      Size/MD5 checksum:  2302092 3ec77e8430276623f3f4235362f4e8f3
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge1_ia64.deb
      Size/MD5 checksum:   242272 9e76da79c6dc43fa6f6fb9d617dbe962

  HP Precision architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge1_hppa.deb
      Size/MD5 checksum:   168072 1cd103a31607398fa9810da5aea71aa3
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge1_hppa.deb
      Size/MD5 checksum:   150580 261e527cdf20991dcd5bc0fcf344e805
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge1_hppa.deb
      Size/MD5 checksum:   184968 d9c926b9eb0ce435c6ad3d16336e0e81
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge1_hppa.deb
      Size/MD5 checksum:   748456 d4e0e10f05b1717555708a47f7223d8a
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge1_hppa.deb
      Size/MD5 checksum:     1038 5ffc79a546a5b9ad82a3fa97252af202
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge1_hppa.deb
      Size/MD5 checksum: 12137588 9d4f5ce191df1141247b586438c293a1
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge1_hppa.deb
      Size/MD5 checksum:   403300 19068a8ae5292c9d312e804e4d21aa97
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge1_hppa.deb
      Size/MD5 checksum:   158350 d1bd336593b2d9d5f261868161be54ed
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge1_hppa.deb
      Size/MD5 checksum:  3355510 6b687cb5de1639f24cd0f458becbd973
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge1_hppa.deb
      Size/MD5 checksum:   123520 60af4d62e1d671183b272180c73cc8f4
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge1_hppa.deb
      Size/MD5 checksum:   204172 2be0db85e67fa831e58f7b5069e97580
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge1_hppa.deb
      Size/MD5 checksum:  2135028 8d104012d6012b8c7b464df7e37be436
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge1_hppa.deb
      Size/MD5 checksum:   216076 2237121338e9463c79487783b0742550

  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge1_m68k.deb
      Size/MD5 checksum:   168096 b6d7a71599cd138c4f8b652edc5b77f5
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge1_m68k.deb
      Size/MD5 checksum:   119734 5daa5117559e40125335769f9b77d781
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge1_m68k.deb
      Size/MD5 checksum:   184990 3178f1e171276b061f52de177220a17b
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge1_m68k.deb
      Size/MD5 checksum:   593776 fab971e41776faf370b7f5502725889d
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge1_m68k.deb
      Size/MD5 checksum:     1042 03ecf1aacdce8b191f5cc9ab61c167d3
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge1_m68k.deb
      Size/MD5 checksum:  9688202 05b50d66d93d38f19b4cf4c1fb9471b6
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge1_m68k.deb
      Size/MD5 checksum:   403384 983c115d6e86953c69b4491189a4dc71
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge1_m68k.deb
      Size/MD5 checksum:   158408 ca47244e7172265550d11057c6583180
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge1_m68k.deb
      Size/MD5 checksum:  3334376 ca591499853bc4a6aac38af2e06bdcf6
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge1_m68k.deb
      Size/MD5 checksum:   114506 eb17bf839c6cf15ca17e648fd0ae4aac
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge1_m68k.deb
      Size/MD5 checksum:   204244 99abf2db86319a701c290465c03eada8
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge1_m68k.deb
      Size/MD5 checksum:  1683068 caf8165b4af9eda6f06eed0e1e5238ed
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge1_m68k.deb
      Size/MD5 checksum:   174664 448d057f3ea9a4e9487194cf2629c458

  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge1_mips.deb
      Size/MD5 checksum:   168076 f7729a4215e50a8f50fe7cf93a6a66e1
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge1_mips.deb
      Size/MD5 checksum:   134522 fe661f9bf78605047b45792fa9f1fee6
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge1_mips.deb
      Size/MD5 checksum:   184966 37704d27018222a9942b68910142d96a
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge1_mips.deb
      Size/MD5 checksum:   719572 3acfad01b9072fd8d168f75f08c30c00
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge1_mips.deb
      Size/MD5 checksum:     1038 87ece36f816acb1a2feb5fa444e85c72
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge1_mips.deb
      Size/MD5 checksum: 10709602 5f47457619a6ddc192ecba7685cbb6b0
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge1_mips.deb
      Size/MD5 checksum:   403310 2127f4aefb131de0ae8187926ad04cc0
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge1_mips.deb
      Size/MD5 checksum:   158356 46f5806667782b338b289b3a0e647e50
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge1_mips.deb
      Size/MD5 checksum:  3354910 f34a776a4bb1603dda691a95552373c0
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge1_mips.deb
      Size/MD5 checksum:   117648 f86273f726c99701aeb74ded63e02d91
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge1_mips.deb
      Size/MD5 checksum:   204190 497eb918f11ccbe9594860c24d049ef4
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge1_mips.deb
      Size/MD5 checksum:  1795442 6f76a2a57d4b776ce476a926af212144
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge1_mips.deb
      Size/MD5 checksum:   189698 c4c33fa5be39a071da8a22253d7d8a2b

  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge1_mipsel.deb
      Size/MD5 checksum:   168072 62b5021be4a2e817fd42f46ac4e02d35
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge1_mipsel.deb
      Size/MD5 checksum:   134470 48f5936b5ed61a62074f845c4e4a9cf3
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge1_mipsel.deb
      Size/MD5 checksum:   184956 9f2781aa77e45c66d5434e26c835f323
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge1_mipsel.deb
      Size/MD5 checksum:   708974 7f86eb1313701fc9c4a9a2979bd8bbbd
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge1_mipsel.deb
      Size/MD5 checksum:     1038 5808a4427ee7f6d3867423c56d97fe85
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge1_mipsel.deb
      Size/MD5 checksum: 10588162 8e0c2ca16c7ddcd4aa01f990c70e8be0
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge1_mipsel.deb
      Size/MD5 checksum:   403290 abdbfea11bdf5081d8642227c9f8525b
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge1_mipsel.deb
      Size/MD5 checksum:   158338 20bc1bf6b3d8683389d908414c68e5fe
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge1_mipsel.deb
      Size/MD5 checksum:  3355498 42dfc73ec31618b3d5ec9aa6cf79e23b
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge1_mipsel.deb
      Size/MD5 checksum:   117200 f9da71080daffca5e262707ae0966408
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge1_mipsel.deb
      Size/MD5 checksum:   204158 0a98168eeb8905144787ff501075c758
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge1_mipsel.deb
      Size/MD5 checksum:  1777510 604445ed5644ca786132b47811ade183
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge1_mipsel.deb
      Size/MD5 checksum:   187284 c87359e6613f4cf36b141d6d480e8dfb

  PowerPC architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge1_powerpc.deb
      Size/MD5 checksum:   168072 961c3fe8ab2994b5f6e0eb8972a83465
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge1_powerpc.deb
      Size/MD5 checksum:   125072 80e453c80c1c9dcb0e391ae6526ffce7
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge1_powerpc.deb
      Size/MD5 checksum:   184962 a12c81b696a0acbbe3bfeb87b47a9944
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge1_powerpc.deb
      Size/MD5 checksum:   712714 30699c25f8e63ed3b9143694ce05e3e5
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge1_powerpc.deb
      Size/MD5 checksum:     1038 7b706a704c8ea502c3225434d804dc6b
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge1_powerpc.deb
      Size/MD5 checksum:  9683088 5094032aa6f3d64db4f39decdafb56d9
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge1_powerpc.deb
      Size/MD5 checksum:   403310 c23889a4ad8098b4322c6dec6265a307
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge1_powerpc.deb
      Size/MD5 checksum:   158364 007c2ad171f74862d6fb453dd6ac2a59
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge1_powerpc.deb
      Size/MD5 checksum:  3337100 382f06390acf9bfc9eeba496a9ad4ade
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge1_powerpc.deb
      Size/MD5 checksum:   114600 033ee754e3e175a202c607c35bf29bde
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge1_powerpc.deb
      Size/MD5 checksum:   204172 61675534cef26849cb54342dbf7d8970
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge1_powerpc.deb
      Size/MD5 checksum:  1642932 0306ae5ce3709dbaba40d18c2e40f6e3
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge1_powerpc.deb
      Size/MD5 checksum:   175502 90778a628ed97d4cbc7c5400787eae18

  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge1_s390.deb
      Size/MD5 checksum:   168076 d2afc2a24593ff088c0b585e0201c03f
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge1_s390.deb
      Size/MD5 checksum:   150370 5dc6e70c792a5646ba227af074fb57a0
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge1_s390.deb
      Size/MD5 checksum:   184942 368f48efcbce533415ee83db8e3d2b89
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge1_s390.deb
      Size/MD5 checksum:   792708 84972f8e21b0e08f0452d393d7eda49a
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge1_s390.deb
      Size/MD5 checksum:     1034 7540473b684567cfe839051f8182218e
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge1_s390.deb
      Size/MD5 checksum: 11309168 bac4aeea83a9b9233d4ff41c569fc7d7
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge1_s390.deb
      Size/MD5 checksum:   403286 3c4eb8807c45f90d682f7781624bff0d
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge1_s390.deb
      Size/MD5 checksum:   158354 d658aa731fc85d28a6bee04ad8ec68a9
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge1_s390.deb
      Size/MD5 checksum:  3349814 85275a8e4c217bf147324b3b4821a065
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge1_s390.deb
      Size/MD5 checksum:   121354 ad4613cfb421ef11910da1e567ed8673
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge1_s390.deb
      Size/MD5 checksum:   204158 afc733c58d35fa71c6fd1d3127e7b3da
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge1_s390.deb
      Size/MD5 checksum:  1944642 d5bc11e62553f1b4adb3b9bb344f354e
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge1_s390.deb
      Size/MD5 checksum:   213340 98c7a540b74238471ad54e2c49508b54

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge1_sparc.deb
      Size/MD5 checksum:   168076 6428ec559f02195ff50f699d712d7d18
    http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge1_sparc.deb
      Size/MD5 checksum:   122230 9d47e07ab455ae0f1cf910174a10befc
    http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge1_sparc.deb
      Size/MD5 checksum:   184942 913e521909494e81255818d68f37a5a1
    http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge1_sparc.deb
      Size/MD5 checksum:   666542 bf2b1a10ee1289f2357a2e5ed381c2db
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge1_sparc.deb
      Size/MD5 checksum:     1034 7d9cf470bceff30a2d5dd50dd5ebf27a
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge1_sparc.deb
      Size/MD5 checksum:  9356026 c4b85a65fff0b19534860b270ee8b48c
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge1_sparc.deb
      Size/MD5 checksum:   403296 cc6c7adb31b6b7e9e4535e1c637b6983
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge1_sparc.deb
      Size/MD5 checksum:   158356 8b067ab9cf3a5092d61f2c2677e855cc
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge1_sparc.deb
      Size/MD5 checksum:  3338322 425efb21651816eec8e850e7823839fe
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge1_sparc.deb
      Size/MD5 checksum:   112524 075ae0b2561d1f29a6c4136419037394
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge1_sparc.deb
      Size/MD5 checksum:   204182 ec4696e83df611458ac53a3e2ece0d37
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge1_sparc.deb
      Size/MD5 checksum:  1583722 8761e0ad9c6d41e694f019b52e0c939a
    http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge1_sparc.deb
      Size/MD5 checksum:   167906 cf862aa0ba44bbd443977d3345ce41ed


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFDAwL2W5ql+IAeqTIRAtZKAJ9VxSoqmPKt7ZnYVldde9vhnBixEQCfSsHE
97k2wh304Jl5MLxhAXXZeF8=
=cWUO
-----END PGP SIGNATURE-----

    

- 漏洞信息 (F39414)

Debian Linux Security Advisory 775-1 (PacketStormID:F39414)
2005-08-17 00:00:00
Debian  debian.org
advisory,remote,arbitrary,javascript
linux,debian
CVE-2004-0718,CVE-2005-1937
[点击下载]

Debian Security Advisory DSA 775-1 - A vulnerability has been discovered in Mozilla and Mozilla Firefox that allows remote attackers to inject arbitrary Javascript from one page into the frameset of another site. Thunderbird is not affected by this and Galeon will be automatically fixed as it uses Mozilla components.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 775-1                     security@debian.org
http://www.debian.org/security/                             Martin Schulze
August 15th, 2005                       http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : mozilla
Vulnerability  : frame injection spoofing
Problem-Type   : remote
Debian-specific: no
CVE ID         : CAN-2004-0718 CAN-2005-1937
BugTraq ID     : 14242

A vulnerability has been discovered in Mozilla and Mozilla Firefox
that allows remote attackers to inject arbitrary Javascript from one
page into the frameset of another site.  Thunderbird is not affected
by this and Galeon will be automatically fixed as it uses Mozilla
components.

The old stable distribution (woody) does not contain Mozilla Firefox
packages.

For the stable distribution (sarge) this problem has been fixed in
version 1.0.4-2sarge1.

For the unstable distribution (sid) this problem has been fixed in
version 1.0.6-1.

We recommend that you upgrade your mozilla-firefox package.


Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge1.dsc
      Size/MD5 checksum:     1001 248d8f9e82f3cade699588f729b26aba
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge1.diff.gz
      Size/MD5 checksum:   227342 b5bff4a3262a6bd69dfb66b654dd1baf
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4.orig.tar.gz
      Size/MD5 checksum: 40212297 8e4ba81ad02c7986446d4e54e978409d

  Alpha architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge1_alpha.deb
      Size/MD5 checksum: 11156416 70c32a6e9517462f18bb828a454b3212
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge1_alpha.deb
      Size/MD5 checksum:   164986 e3b758071d4be7c98bfd8a0540791de6
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge1_alpha.deb
      Size/MD5 checksum:    56802 a45946418ff52e979d402455eb910a48

  AMD64 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge1_amd64.deb
      Size/MD5 checksum:  9392060 636d020aff9b205714b45b739110425b
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge1_amd64.deb
      Size/MD5 checksum:   159748 49544cb67eafedfa22248d7d8fdd8663
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge1_amd64.deb
      Size/MD5 checksum:    55276 8f948a91991238f70f75e3775c2d0801

  ARM architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge1_arm.deb
      Size/MD5 checksum:  8209620 89ecd8c94f4fbbb90300c345dd6c3563
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge1_arm.deb
      Size/MD5 checksum:   151096 f8fb6c08b9258a1ff01b98ec0a45c2c4
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge1_arm.deb
      Size/MD5 checksum:    50648 7cf42eb18d94903784c6bccdc5b325e3

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge1_i386.deb
      Size/MD5 checksum:  8880930 c52905c0b136e7539670c41018b9c9b3
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge1_i386.deb
      Size/MD5 checksum:   154894 b2a599514fda8a36228ca74cc6e642eb
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge1_i386.deb
      Size/MD5 checksum:    52186 665e3b76f6303cf62cfaa8673a5c67a3

  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge1_ia64.deb
      Size/MD5 checksum: 11608384 7a4b9639a9cdaf21243ed7a3be74e598
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge1_ia64.deb
      Size/MD5 checksum:   165308 11a3066857ca62dec1d60dbe8ac14851
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge1_ia64.deb
      Size/MD5 checksum:    59988 a7465c43cf91cf81fbaa342f027d10c0

  HP Precision architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge1_hppa.deb
      Size/MD5 checksum: 10258426 d5ffabecc48a1a6bfa7d3a8d26980732
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge1_hppa.deb
      Size/MD5 checksum:   162692 58a4a0a39bafd202a2919a5543a7ab55
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge1_hppa.deb
      Size/MD5 checksum:    55782 d475a913358c0621373cfaa6759f3858

  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge1_m68k.deb
      Size/MD5 checksum:  8159568 14665ff28f3988e53f27b2a69ac6969e
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge1_m68k.deb
      Size/MD5 checksum:   153808 0fa57632ae398ffac16a51a7a38ef4aa
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge1_m68k.deb
      Size/MD5 checksum:    51458 8b05ef20891031341e127772cf467009

  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge1_mips.deb
      Size/MD5 checksum:  9913666 0be44208606d670654eceaf1f0467395
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge1_mips.deb
      Size/MD5 checksum:   152774 7cb360f46abc025799c9a8ae4b2f195d
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge1_mips.deb
      Size/MD5 checksum:    52480 921b88b8540a0bb7cfabb68490055d00

  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge1_mipsel.deb
      Size/MD5 checksum:  9794034 f6bc5806b30ba861b45abbd945338f32
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge1_mipsel.deb
      Size/MD5 checksum:   152272 bf7d062c8aaa7177233069d67849b311
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge1_mipsel.deb
      Size/MD5 checksum:    52272 d268d7c64ed36ac6c08d0786f0717abf

  PowerPC architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge1_powerpc.deb
      Size/MD5 checksum:  8553770 4867ba093d827168e933ffda4e6919fa
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge1_powerpc.deb
      Size/MD5 checksum:   153316 cdcc5efb2ab59de06336ad19c19d4f0f
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge1_powerpc.deb
      Size/MD5 checksum:    54574 96ce5e54ce3d3431430319ed18d185f6

  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge1_s390.deb
      Size/MD5 checksum:  9631110 6e4bfb79847ae61b7e273cc2bb5498a0
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge1_s390.deb
      Size/MD5 checksum:   160320 60b84a49f19bc3a4b22aa945ccf3e2bf
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge1_s390.deb
      Size/MD5 checksum:    54716 e7b8bc318ee6bb50e02c5d53246d7d05

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge1_sparc.deb
      Size/MD5 checksum:  8643914 594b8fb1f240d890bdda7d0a3ad3fc71
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge1_sparc.deb
      Size/MD5 checksum:   153508 167227e2dccc4264cdc4ba8c20986df8
    http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge1_sparc.deb
      Size/MD5 checksum:    51014 6a3225585fb9f8a8632e09ba6403b8d9


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFDAHY6W5ql+IAeqTIRAv2bAKCXEjB/jTQOBVdkzYx45RgajYljIwCePaA3
JL5Cw0WgHJUKo2c9u6ODTzY=
=0qwq
-----END PGP SIGNATURE-----

    

- 漏洞信息

59834
Mozilla Multiple Browser Cross-domain Frame Injection Content Spoofing
Remote / Network Access Input Manipulation
Loss of Integrity Upgrade
Exploit Public Vendor Verified

- 漏洞描述

- 时间线

2004-07-01 Unknow
Unknow Unknow

- 解决方案

Products

Mozilla Organization

Mozilla Browser

0.x
1.0
1.1
1.2
1.3
1.4
1.5
1.6
1.7.8

Firefox

0.9
0.9.1
0.8
1.0.4

Firebird

0.7

Camino

0.8.4
0.8.3

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Mozilla Cross-Domain Frame Loading Vulnerability
Failure to Handle Exceptional Conditions 10877
Yes No
2004-07-01 12:00:00 2009-07-12 06:16:00
This issue was reported by Gary McKay. Secunia reported that this vulnerability has been reintroduced in Mozilla Browser 1.7.8, Mozilla Firefox 1.0.4 and Mozilla Camino 0.8.4.

- 受影响的程序版本

SuSE SUSE Linux Enterprise Server 8
+ Linux kernel 2.4.21
+ Linux kernel 2.4.19
SGI Advanced Linux Environment 3.0
SCO Unixware 7.1.4
S.u.S.E. Linux Personal 9.1
S.u.S.E. Linux Personal 9.0 x86_64
S.u.S.E. Linux Personal 9.0
S.u.S.E. Linux Personal 8.2
S.u.S.E. Linux Enterprise Server 9
S.u.S.E. Linux Desktop 1.0
S.u.S.E. Linux 8.1
RedHat Linux 9.0 i386
RedHat Linux 7.3 i686
RedHat Linux 7.3 i386
RedHat Linux 7.3
Red Hat Fedora Core1
Mozilla Thunderbird 0.6
Mozilla Firefox 1.0.4
Mozilla Firefox 0.8
Mozilla Firebird 0.7
Mozilla Firebird 0.6.1
Mozilla Firebird 0.5
Mozilla Camino 0.8.4
Mozilla Browser 1.7.8
Mozilla Browser 1.6
Mozilla Browser 1.5
Mozilla Browser 1.4.2
Mozilla Browser 1.4.1
Mozilla Browser 1.4 b
Mozilla Browser 1.4 a
Mozilla Browser 1.4
+ Mandriva Linux Mandrake 9.2 amd64
+ Mandriva Linux Mandrake 9.2
Mozilla Browser 1.3.1
Mozilla Browser 1.3
Mozilla Browser 1.2.1
Mozilla Browser 1.2 Beta
Mozilla Browser 1.2 Alpha
Mozilla Browser 1.2
Mozilla Browser 1.1 Beta
Mozilla Browser 1.1 Alpha
Mozilla Browser 1.1
Mozilla Browser 1.0.2
+ Red Hat Enterprise Linux AS 2.1 IA64
+ Red Hat Enterprise Linux AS 2.1 IA64
+ Red Hat Enterprise Linux AS 2.1
+ Red Hat Enterprise Linux AS 2.1
+ RedHat Advanced Workstation for the Itanium Processor 2.1
+ RedHat Advanced Workstation for the Itanium Processor 2.1
+ RedHat Enterprise Linux ES 2.1 IA64
+ RedHat Enterprise Linux ES 2.1 IA64
+ RedHat Enterprise Linux ES 2.1
+ RedHat Enterprise Linux ES 2.1
+ RedHat Enterprise Linux WS 2.1 IA64
+ RedHat Enterprise Linux WS 2.1 IA64
+ RedHat Enterprise Linux WS 2.1
+ RedHat Enterprise Linux WS 2.1
+ Sun Linux 5.0.7
Mozilla Browser 1.0.1
Mozilla Browser 1.0 RC2
+ Conectiva Linux 8.0
+ Conectiva Linux 7.0
+ Conectiva Linux 6.0
Mozilla Browser 1.0 RC1
- FreeBSD FreeBSD 4.5
- FreeBSD FreeBSD 4.4
- FreeBSD FreeBSD 4.3
- FreeBSD FreeBSD 4.2
- FreeBSD FreeBSD 4.1.1
Mozilla Browser 1.0
+ Mandriva Linux Mandrake 8.2 ppc
+ Mandriva Linux Mandrake 8.2
+ RedHat Linux 8.0 i386
+ RedHat Linux 8.0
Mozilla Browser 0.9.48
Mozilla Browser 0.9.35
Mozilla Browser 0.9.9
- FreeBSD FreeBSD 4.5
- FreeBSD FreeBSD 4.4
- FreeBSD FreeBSD 4.3
- FreeBSD FreeBSD 4.2
- FreeBSD FreeBSD 4.1.1
+ RedHat Linux 7.3 i386
+ RedHat Linux 7.3
+ RedHat Linux 7.2 i686
+ RedHat Linux 7.2 i586
+ RedHat Linux 7.2 i386
+ RedHat Linux 7.2
Mozilla Browser 0.9.8
- Apple Mac OS 9 9.2.2
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0
- Apple Mac OS 9 9.0
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.1
- Apple Mac OS X 10.1.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0
- Apple Mac OS X 10.0
- Microsoft Windows 95
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows ME
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0
- Microsoft Windows XP 0
Mozilla Browser 0.9.7
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0
- Apple Mac OS 9 9.0
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.1
- Apple Mac OS X 10.1.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0
- Apple Mac OS X 10.0
- Microsoft Windows 95
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows ME
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0
- Microsoft Windows XP 0
Mozilla Browser 0.9.6
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.0
- Apple Mac OS 9 9.0
- Be BeOS 5.0
- Be BeOS 5.0
- BSDI BSD/OS 4.2
- BSDI BSD/OS 4.2
- Compaq OpenVMS 7.3 Alpha
- Compaq OpenVMS 7.3 Alpha
- Compaq OpenVMS 7.2 -2 Alpha
- Compaq OpenVMS 7.2 -2 Alpha
- Compaq OpenVMS 7.1 -2 Alpha
- FreeBSD FreeBSD 4.0
- FreeBSD FreeBSD 4.0
- IBM AIX 4.3.3
- IBM AIX 4.3.3
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows ME
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0
- RedHat Linux 7.0 sparc
- RedHat Linux 7.0 sparc
- RedHat Linux 7.0 i386
- RedHat Linux 7.0 i386
- RedHat Linux 7.0 alpha
- RedHat Linux 7.0 alpha
- RedHat Linux 6.0 sparc
- RedHat Linux 6.0 sparc
- RedHat Linux 6.0 alpha
- RedHat Linux 6.0 alpha
- RedHat Linux 6.0
- RedHat Linux 6.0
- SGI IRIX 6.5
- SGI IRIX 6.5
- Sun Solaris 2.8
- Sun Solaris 2.8
- Sun Solaris 2.7
- Sun Solaris 2.7
Mozilla Browser 0.9.5
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0
- Apple Mac OS 9 9.0
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0
- Apple Mac OS X 10.0
- Microsoft Windows 95
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows ME
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0
- Microsoft Windows XP 0
Mozilla Browser 0.9.4 .1
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0
- Apple Mac OS 9 9.0
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0
- Apple Mac OS X 10.0
- Microsoft Windows 95
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows ME
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0
- Microsoft Windows XP 0
Mozilla Browser 0.9.4
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0
- Apple Mac OS 9 9.0
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.1
- Apple Mac OS X 10.1.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0
- Apple Mac OS X 10.0
+ Conectiva Linux 8.0
+ Conectiva Linux 7.0
+ Conectiva Linux 7.0
+ Conectiva Linux 6.0
+ Conectiva Linux 6.0
- Microsoft Windows 95
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows ME
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0
- Microsoft Windows XP 0
Mozilla Browser 0.9.3
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0
- Apple Mac OS 9 9.0
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0
- Apple Mac OS X 10.0
- Microsoft Windows 95
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows ME
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0
- Microsoft Windows XP 0
Mozilla Browser 0.9.2 .1
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0
- Apple Mac OS 9 9.0
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0
- Apple Mac OS X 10.0
- Microsoft Windows 95
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows ME
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0
- Microsoft Windows XP 0
Mozilla Browser 0.9.2
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0
- Apple Mac OS 9 9.0
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.1
- Apple Mac OS X 10.1.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0
- Apple Mac OS X 10.0
+ Conectiva Linux 8.0
+ Conectiva Linux 7.0
+ Conectiva Linux 7.0
+ Conectiva Linux 6.0
+ Conectiva Linux 6.0
- Microsoft Windows 95
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows ME
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0
- Microsoft Windows XP 0
Mozilla Browser 0.8
+ Mandriva Linux Mandrake 8.0 ppc
+ Mandriva Linux Mandrake 8.0
Mozilla Browser M16
Mozilla Browser M15
Mandriva Linux Mandrake 10.0 AMD64
Mandriva Linux Mandrake 10.0
Mandriva Linux Mandrake 9.2 amd64
Mandriva Linux Mandrake 9.2
K-Meleon K-Meleon 0.9
K-Meleon K-Meleon 0.8.2
Debian Linux 3.1 sparc
Debian Linux 3.1 s/390
Debian Linux 3.1 ppc
Debian Linux 3.1 mipsel
Debian Linux 3.1 mips
Debian Linux 3.1 m68k
Debian Linux 3.1 ia-64
Debian Linux 3.1 ia-32
Debian Linux 3.1 hppa
Debian Linux 3.1 arm
Debian Linux 3.1 amd64
Debian Linux 3.1 alpha
Debian Linux 3.1
Avaya Network Routing
Apple Mac OS X Server 10.3.5
Apple Mac OS X Server 10.3.4
Apple Mac OS X Server 10.2.8
Apple Mac OS X 10.3.5
Apple Mac OS X 10.3.4
Apple Mac OS X 10.2.8
Mozilla Thunderbird 0.7.3
Mozilla Thunderbird 0.7.2
Mozilla Thunderbird 0.7.1
Mozilla Thunderbird 0.7
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9 rc
Mozilla Firefox 0.9
Mozilla Camino 0.8.3
Mozilla Browser 1.8 Alpha 2
Mozilla Browser 1.7.2
Mozilla Browser 1.7.1
Mozilla Browser 1.7 rc3
Mozilla Browser 1.7
Mozilla Browser 0.9.2 .1
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0
- Apple Mac OS 9 9.0
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0
- Apple Mac OS X 10.0
- Microsoft Windows 95
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows ME
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0
- Microsoft Windows XP 0

- 不受影响的程序版本

Mozilla Thunderbird 0.7.3
Mozilla Thunderbird 0.7.2
Mozilla Thunderbird 0.7.1
Mozilla Thunderbird 0.7
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9 rc
Mozilla Firefox 0.9
Mozilla Camino 0.8.3
Mozilla Browser 1.8 Alpha 2
Mozilla Browser 1.7.2
Mozilla Browser 1.7.1
Mozilla Browser 1.7 rc3
Mozilla Browser 1.7
Mozilla Browser 0.9.2 .1
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2.1
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.2
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.1
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0.4
- Apple Mac OS 9 9.0
- Apple Mac OS 9 9.0
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.2
- Apple Mac OS X 10.1.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.1
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.4
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.3
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.2
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0.1
- Apple Mac OS X 10.0
- Apple Mac OS X 10.0
- Microsoft Windows 95
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows ME
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Microsoft Windows NT 4.0
- Microsoft Windows XP 0

- 漏洞讨论

Mozilla and its derivatives are reported prone to a cross-domain frame loading vulnerability. It is reported that if the name of a frame rendered in a target site is known, then an attacker may potentially render arbitrary HTML in the frame of the target site.

An attacker may exploit this vulnerability to spoof an interface of a trusted web site. To exploit this vulnerability a victim will need to visit a website hosted by an attacker. The attackers site will then spawn a trusted site in a window, if exploited successfully; the attackers site will place data into the IFRAME of the trusted site. This vulnerability may aid in Phishing style attacks.

Mozilla prior to 1.7, Mozilla Firebird 0.7, Mozilla Firefox prior to 0.9, Mozilla Thunderbird prior to 0.7, and Netscape 7.1 are all reported vulnerable.

Update (June 6, 2005): It has been reported that this vulnerability has been reintroduced in Mozilla Browser 1.7.8, Mozilla Firefox 1.0.4 and Mozilla Camino 0.8.4.

K-Meleon 0.9 and 0.8.2 are reportedly vulnerable to this issue as well.

- 漏洞利用

No exploit is required.

A proof of concept to test this issue on Firefox 1.0.4, Mozilla 1.7.8, and Camino 0.8.4 has been provided by Secunia at the following location:

http://secunia.com/multiple_browsers_frame_injection_vulnerability_test/

- 解决方案

Mozilla has released upgrades to Mozilla, Firefox, and Thunderbird.

SCO has released an advisory SCOSA-2005.25 including updated packages to address this issue. Please see the referenced advisory for more information.

Avaya has released an advisory that acknowledges this vulnerability for Avaya products. Fixes are not currently available; customers are advised to contact the vendor for further details regarding fix availability. Please see the referenced Avaya advisory at the following location for further details:
http://support.avaya.com/japple/css/japple?temp.groupID=128450&temp.selectedFamily=128451&temp.selectedProduct=154235&temp.selectedBucket=126655&temp.feedbackState=askForFeedback&temp.documentID=198527&PAGE=avaya.css.CSSLvl1Detail&executeTransaction=avaya.css.UsageUpdate()

RedHat has released advisory RHSA-2004:421-17 and fixes dealing with this issue for Mozilla on RedHat Enterprise Linux platforms. Please see the referenced advisory for further information.

Slackware has released an advisory (SSA:2004-223-01) to address this issue. Please see the referenced advisory for more information.

Mandrake Linux has released advisory MDKSA-2004:082 along with fixes addressing this issue. Please see the referenced advisory for further information.

SGI has made available Patch 10095, correcting this vulnerability for systems running SGI Advanced Linux Environment 3:

Patch 10095 is available from http://support.sgi.com/ and
ftp://patches.sgi.com/support/free/security/patches/ProPack/3/

The individual RPMs from Patch 10095 are available from:
ftp://oss.sgi.com/projects/sgi_propack/download/3/updates/RPMS
ftp://oss.sgi.com/projects/sgi_propack/download/3/updates/SRPMS

SuSE Linux has released advisory SUSE-SA:2004:036 along with fixes dealing with this issue. Please see the referenced advisory for more information.

Conectiva has released an advisory (CLA-2004:877) to address various issues including this in Mozilla. This advisory contains updated Mozilla packages (1.7.3) for Conectiva Linux 9 and 10. Please see the referenced advisory for more information.

The Fedora Legacy project has released advisory FLSA-2004:2089 along with fixes to address multiple issues in RedHat Fedora Core 1, and RedHat Linux 7.3 and 9.0. Please see the referenced advisory for further information.

Debian has released advisory DSA 775-1 and fixes to address this issue. Please see the referenced advisory for links to fixes.

Debian has released security advisory DSA 777-1 addressing this issue for mozilla. Please see the referenced advisory for further information.

Debian has released advisory DSA 810-1 to address various issues in Mozilla. Please see the referenced advisory for more information.


Mozilla Thunderbird 0.6

Mozilla Firefox 0.8

Mozilla Browser 0.9.9

Mozilla Browser 1.0

Mozilla Browser 1.0 RC1

Mozilla Browser 1.0 RC2

Mozilla Browser 1.0.1

Mozilla Browser 1.0.2

Mozilla Firefox 1.0.4

Mozilla Browser 1.1

Mozilla Browser 1.1 Alpha

Mozilla Browser 1.1 Beta

Mozilla Browser 1.2 Alpha

Mozilla Browser 1.2

Mozilla Browser 1.2 Beta

Mozilla Browser 1.2.1

Mozilla Browser 1.3

Mozilla Browser 1.3.1

Mozilla Browser 1.4

Mozilla Browser 1.4 a

Mozilla Browser 1.4 b

Mozilla Browser 1.4.1

Mozilla Browser 1.4.2

Mozilla Browser 1.5

Mozilla Browser 1.6

Apple Mac OS X 10.2.8

Apple Mac OS X Server 10.2.8

Apple Mac OS X Server 10.3.4

Apple Mac OS X 10.3.4

Apple Mac OS X Server 10.3.5

Apple Mac OS X 10.3.5

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站