F-Secure
Tools
Netscape Multiple Vulnerabilities
| Report ID: | SA29049 |
| Source: | Secunia |
| Date of Discovery: | 21.02.2008 |
| Criticality: | Urgent |
| Affects: | Netscape 9.x |
| Compromise From: | From remote |
| Compromise Type: | DoS Exposure of sensitive information System access Cross site scripting Spoofing Security bypass |
Summary
Netscape has acknowledged some weaknesses, a security issue, and some vulnerabilities in Netscape Navigator, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, conduct spoofing attacks, or to compromise a user's system.
Detailed Description
Netscape has acknowledged some weaknesses, a security issue, and some vulnerabilities in Netscape Navigator, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, conduct spoofing attacks, or to compromise a user's system.
For more information:
SA28622
SA28758
For more information:
SA28622
SA28758
Solution
Update to version 9.0.0.6:
http://browser.netscape.com/downloads
NOTE: Official support for all Netscape client products will end on March 1st, 2008. Please see the vendor announcement for more details.
http://blog.netscape.com/2007/12/28/end-of-support-for-netscape-web-browsers/
http://browser.netscape.com/downloads
NOTE: Official support for all Netscape client products will end on March 1st, 2008. Please see the vendor announcement for more details.
http://blog.netscape.com/2007/12/28/end-of-support-for-netscape-web-browsers/
CVE Reference
CVE-2008-0414
CVE-2008-0413
CVE-2008-0418
CVE-2008-0419
CVE-2008-0420
CVE-2008-0593
CVE-2008-0591
CVE-2008-0415
CVE-2008-0412
CVE-2008-0413
CVE-2008-0418
CVE-2008-0419
CVE-2008-0420
CVE-2008-0593
CVE-2008-0591
CVE-2008-0415
CVE-2008-0412