Oval Definition:oval:org.mitre.oval:def:11407
Revision Date:2013-04-29Version:11
Title:Thunderbird 0.6 through 0.9 and Mozilla 1.7 through 1.7.3 does not obey the network.cookie.disableCookieForMailNews preference, which could allow remote attackers bypass the user's intended privacy and security policy by using cookies in e-mail messages.
Description:Thunderbird 0.6 through 0.9 and Mozilla 1.7 through 1.7.3 does not obey the network.cookie.disableCookieForMailNews preference, which could allow remote attackers bypass the user's intended privacy and security policy by using cookies in e-mail messages.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2005-0149
Platform(s):CentOS Linux 3
CentOS Linux 4
Oracle Linux 4
Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
Product(s):
Definition Synopsis
  • OS Section: RHEL3, CentOS3
  • RHEL3 or CentOS3
  • The operating system installed on the system is Red Hat Enterprise Linux 3
  • OR CentOS Linux 3.x
  • AND Configuration section
  • mozilla-js-debugger is earlier than 37:1.4.4-1.3.5
  • OR mozilla is earlier than 37:1.4.4-1.3.5
  • OR mozilla-chat is earlier than 37:1.4.4-1.3.5
  • OR mozilla-mail is earlier than 37:1.4.4-1.3.5
  • OR mozilla-dom-inspector is earlier than 37:1.4.4-1.3.5
  • OR mozilla-devel is earlier than 37:1.4.4-1.3.5
  • OR mozilla-nss is earlier than 37:1.4.4-1.3.5
  • OR mozilla-nss-devel is earlier than 37:1.4.4-1.3.5
  • OR mozilla-nspr is earlier than 37:1.4.4-1.3.5
  • OR mozilla-nspr-devel is earlier than 37:1.4.4-1.3.5
  • OR OS Section: RHEL4, CentOS4, Oracle Linux 4
  • RHEL4, CentOS4 or Oracle Linux 4
  • The operating system installed on the system is Red Hat Enterprise Linux 4
  • OR CentOS Linux 4.x
  • OR Oracle Linux 4.x
  • AND Configuration section
  • mozilla-js-debugger is earlier than 37:1.7.6-1.4.1
  • OR devhelp-devel is earlier than 0:0.9.2-2.4.3
  • OR mozilla is earlier than 37:1.7.6-1.4.1
  • OR thunderbird is earlier than 0:1.0-1.1.EL4
  • OR mozilla-chat is earlier than 37:1.7.6-1.4.1
  • OR mozilla-mail is earlier than 37:1.7.6-1.4.1
  • OR mozilla-dom-inspector is earlier than 37:1.7.6-1.4.1
  • OR devhelp is earlier than 0:0.9.2-2.4.3
  • OR mozilla-nss is earlier than 37:1.7.6-1.4.1
  • OR evolution is earlier than 0:2.0.2-14
  • OR mozilla-devel is earlier than 37:1.7.6-1.4.1
  • OR mozilla-nss-devel is earlier than 37:1.7.6-1.4.1
  • OR mozilla-nspr is earlier than 37:1.7.6-1.4.1
  • OR mozilla-nspr-devel is earlier than 37:1.7.6-1.4.1
  • OR evolution-devel is earlier than 0:2.0.2-14
    • BACK