certfr_alerte - CERTA-2005-ALE-012

CERTA-2005-ALE-012

Vulnerability from certfr_alerte - Published: - Updated:

Netscape 8.0.3.3 inclut les correctifs de sécurité uniquement jusqu'à la version 1.0.6 de Firefox et comporte donc les failles corrigées avec la version 1.0.7.

Description

Se référer à l'avis CERTA-2005-AVI-358 concernant Firefox (cf section Documentation).

Contournement provisoire

Utiliser un autre butineur.

Solution

Installer la version 8.0.4 ou toute version postérieure.

Tout système utilisant Netscape version 8.0.3.3 et antérieures.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Liste des correctifs appliqués dans Firefox 1.0.7	None	vendor-advisory
Alertes de sécurité Netscape :	-	other
Bulletin de sécurité CERTA-2005-AVI-358 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cP\u003eTout syst\u00e8me utilisant \u003cTT\u003eNetscape\u003c/TT\u003e version 8.0.3.3 et  ant\u00e9rieures.\u003c/P\u003e",
  "closed_at": "2005-09-27",
  "content": "## Description\n\nSe r\u00e9f\u00e9rer \u00e0 l\u0027avis CERTA-2005-AVI-358 concernant Firefox (cf section\nDocumentation).\n\n## Contournement provisoire\n\nUtiliser un autre butineur.\n\n## Solution\n\nInstaller la version 8.0.4 ou toute version post\u00e9rieure.\n",
  "cves": [],
  "links": [
    {
      "title": "Alertes de s\u00e9curit\u00e9 Netscape :",
      "url": "http://browser.netscape.com/ns8/security/alerts.jsp"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 CERTA-2005-AVI-358 :",
      "url": "http://www.certa.ssi.gouv.fr/site/CERTA-2005-AVI-358/index.html"
    }
  ],
  "reference": "CERTA-2005-ALE-012",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2005-09-27T00:00:00.000000"
    },
    {
      "description": "ajout section Solution.",
      "revision_date": "2006-04-12T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Netscape 8.0.3.3 inclut les correctifs de s\u00e9curit\u00e9 uniquement jusqu\u0027\u00e0 la\nversion 1.0.6 de Firefox et comporte donc les failles corrig\u00e9es avec la\nversion 1.0.7.\n",
  "title": "Vuln\u00e9rabilit\u00e9 de Netscape 8",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Liste des correctifs appliqu\u00e9s dans Firefox 1.0.7",
      "url": null
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted