icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Mozilla SeaMonkey < 1.1.18 Multiple Vulnerabilities

High

Synopsis

The remote host is running a web browser that is vulnerable to multiple attack vectors.

Description

The remote host is running a version of Mozilla SeaMonkey earlier than 1.1.18. Such versions are potentially affected by multiple vulnerabilities :

- A heap overflow vulnerability in the code that handles regular expressions in certificate names. (MFSA-2009-43)

- A mismatch in the treatment of domain names in SSL certificates between SSL clients and the Certificate Authorities which issue server certificates. (MFSA-2009-42)

Solution

Upgrade to SeaMonkey 1.1.18 or later.