Vulnerability Roundup

Four new vulnerabilities in Apple's Safari browser on both Windows and Mac OS X were fixed. Two of the vulnerabilities could allow arbitrary code execution. One of the others, which could allow a malicious site to control the address bar on Windows, was publicly disclosed last June. The last could allow cross-site scripting. The update brings Safari to version 3.1.1.

An earlier Firefox security fix (MFSA 2008-15—Crashes with evidence of memory corruption) introduced a stability problem, causing the browser to crash some times during JavaScript garbage collection. The nature of these crashes was such that they might be exploitable. This problem was fixed in MFSA 2008-20, which brings Firefox to version 2.0.0.14. Thunderbird and SeaMonkey are also affected, although Thunderbird is only affected if the user changes the default setting whereby JavaScript is disabled in HTML e-mails. As has usually been the case lately, while the advisory announced a new Thunderbird 2.0.0.14, the latest available version on the Mozilla site (as of the morning of April 17) is 2.0.0.12.

OpenOffice.Org fixed six vulnerabilities in the new version 2.4 of its suite:

• Manipulated ODF text documents containing XForms can lead to heap overflows and arbitrary code execution—This appears to be related to two separate vulnerabilities in the libicu library, which is the ICU (International Components for Unicode) version 3.8.1.


• Manipulated Quattro Pro files can lead to heap overflows and arbitrary code execution—There are no details on this vulnerability.


• Manipulated EMF files can lead to heap overflows and arbitrary code execution—EMF files have also caused recent trouble to Microsoft Windows. OpenOffice.Org 1.1 and 2.x can experience a heap overflow when loading a malicious EMF.


• Manipulated OLE files can lead to heap overflows and arbitrary code execution—
It's not clear from the advisory what the nature of the vulnerability is or even what an "OLE file" is.

Posted by Larry Seltzer on April 17, 2008 11:57 AM