Red Hat Customer Portal

Skip to main content

CVE-2007-5337

Impact:
Moderate
Public Date:
2007-10-18

The MITRE CVE dictionary describes this issue as:

Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5, when running on Linux systems with gnome-vfs support, might allow remote attackers to read arbitrary files on SSH/sftp servers that accept key authentication by creating a web page on the target server, in which the web page contains URIs with (1) smb: or (2) sftp: schemes that access other files from the server.

Find out more about CVE-2007-5337 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 5 (thunderbird) RHSA-2007:0981 2007-10-19
Red Hat Enterprise Linux 4 (seamonkey) RHSA-2007:0980 2007-10-19
Red Hat Enterprise Linux 4 (thunderbird) RHSA-2007:0981 2007-10-19
Red Hat Enterprise Linux 4 (firefox) RHSA-2007:0979 2007-10-19
Red Hat Enterprise Linux 3 (seamonkey) RHSA-2007:0980 2007-10-19
Red Hat Enterprise Linux 5 (firefox) RHSA-2007:0979 2007-10-19
Red Hat Enterprise Linux 2.1 (seamonkey) RHSA-2007:0980 2007-10-19
Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server) (thunderbird) RHSA-2007:0981 2007-10-19

Affected Packages State

Platform Package State
Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server) thunderbird 1.5.0.12-5.el5 Fixed

Last Modified