CVE-2007-1282

Published: Mar 6, 2007Modified: Apr 23, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Integer overflow in Mozilla Thunderbird before 1.5.0.10 and SeaMonkey before 1.0.8 allows remote attackers to trigger a buffer overflow and possibly execute arbitrary code via a text/enhanced or text/richtext e-mail message with an extremely long line.

Affected (38)

Products: Mozilla: Seamonkey, Thunderbird

2 products

Configuration A

38 vulnerable · 4 platform

Vulnerable Software	Affected Versions
Mozilla Seamonkey	Version 1.0.1
Mozilla Seamonkey	Version 1.0.2
Mozilla Seamonkey	Version 1.0.3
Mozilla Seamonkey	Version 1.0.4
Mozilla Seamonkey	Version 1.0.5
Mozilla Seamonkey	Version 1.0.6
Mozilla Seamonkey	Version 1.0.7
Mozilla Seamonkey	Version 1.0
Mozilla Thunderbird	Version 0.1
Mozilla Thunderbird	Version 0.2
Mozilla Thunderbird	Version 0.3
Mozilla Thunderbird	Version 0.4
Mozilla Thunderbird	Version 0.5
Mozilla Thunderbird	Version 0.6
Mozilla Thunderbird	Version 0.7.1
Mozilla Thunderbird	Version 0.7.2
Mozilla Thunderbird	Version 0.7.3
Mozilla Thunderbird	Version 0.7
Mozilla Thunderbird	Version 0.8
Mozilla Thunderbird	Version 0.9
Mozilla Thunderbird	Version 1.0.1
Mozilla Thunderbird	Version 1.0.2
Mozilla Thunderbird	Version 1.0.3
Mozilla Thunderbird	Version 1.0.4
Mozilla Thunderbird	Version 1.0.5
Mozilla Thunderbird	Version 1.0.6
Mozilla Thunderbird	Version 1.0.7
Mozilla Thunderbird	Version 1.0.8
Mozilla Thunderbird	Version 1.0
Mozilla Thunderbird	Version 1.5.0.1
Mozilla Thunderbird	Version 1.5.0.2
Mozilla Thunderbird	Version 1.5.0.3
Mozilla Thunderbird	Version 1.5.0.4
Mozilla Thunderbird	Version 1.5.0.6
Mozilla Thunderbird	Version 1.5.0.7
Mozilla Thunderbird	Version 1.5.0.8
Mozilla Thunderbird	Version 1.5.0.9
Mozilla Thunderbird	Version 1.5

Running on/with	Platform Versions
Redhat Enterprise Linux	Version 4.0
Redhat Enterprise Linux	Version 4.0
Redhat Enterprise Linux	Version 4.0
Redhat Enterprise Linux Desktop	Version 4.0

References (42)

ftp://patches.sgi.com/support/free/security/advisories/20070202-01-P.asc (unsafe URL)

Source: secalert@redhat.com

http://fedoranews.org/cms/node/2747

Source: secalert@redhat.com

http://fedoranews.org/cms/node/2749

Source: secalert@redhat.com

http://osvdb.org/33810

Source: secalert@redhat.com

http://secunia.com/advisories/24406

Source: secalert@redhat.com

http://secunia.com/advisories/24456

Source: secalert@redhat.com

http://secunia.com/advisories/24457

Source: secalert@redhat.com

http://secunia.com/advisories/24522

Source: secalert@redhat.com

http://secunia.com/advisories/25588

Source: secalert@redhat.com

http://security.gentoo.org/glsa/glsa-200703-18.xml

Source: secalert@redhat.com

http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.338131

Source: secalert@redhat.com

http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.363947

Source: secalert@redhat.com

http://www.debian.org/security/2007/dsa-1336

Source: secalert@redhat.com

http://www.mozilla.org/security/announce/2007/mfsa2007-10.html

Source: secalert@redhat.com

Patch

http://www.redhat.com/support/errata/RHSA-2007-0078.html

Source: secalert@redhat.com

Patch

http://www.redhat.com/support/errata/RHSA-2007-0108.html

Source: secalert@redhat.com

http://www.securityfocus.com/bid/22845

Source: secalert@redhat.com

http://www.vupen.com/english/advisories/2007/0824

Source: secalert@redhat.com

https://bugzilla.mozilla.org/show_bug.cgi?id=362735

Source: secalert@redhat.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/32810

Source: secalert@redhat.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11313

Source: secalert@redhat.com

ftp://patches.sgi.com/support/free/security/advisories/20070202-01-P.asc (unsafe URL)

Source: af854a3a-2127-422b-91ae-364da2661108

http://fedoranews.org/cms/node/2747

Source: af854a3a-2127-422b-91ae-364da2661108

http://fedoranews.org/cms/node/2749

Source: af854a3a-2127-422b-91ae-364da2661108

http://osvdb.org/33810

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/24406

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/24456

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/24457

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/24522

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/25588

Source: af854a3a-2127-422b-91ae-364da2661108

http://security.gentoo.org/glsa/glsa-200703-18.xml

Source: af854a3a-2127-422b-91ae-364da2661108

http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.338131

Source: af854a3a-2127-422b-91ae-364da2661108

http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.363947

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2007/dsa-1336

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mozilla.org/security/announce/2007/mfsa2007-10.html

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.redhat.com/support/errata/RHSA-2007-0078.html

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.redhat.com/support/errata/RHSA-2007-0108.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/22845

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/0824

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.mozilla.org/show_bug.cgi?id=362735

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/32810

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11313

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.