Forum Thread: Pale Moon Multiple Vulnerabilities

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Vulnerabilities

See the original Secunia advisory:
Pale Moon Multiple Vulnerabilities

Secunia Pale Moon Multiple Vulnerabilities
Secunia Official 19th Jan, 2013 11:49
Ranking: 0
Posts: 0
User Since: -
System Score: -
Location: Copenhagen, DK
Some vulnerabilities have been reported in Pale Moon, where some have an unknown impact and others can be exploited by malicious people to compromise a user's system.

For more information see vulnerabilities #1 through #3 in:
SA51752

1) Some unspecified errors in the OTS library can potentially be exploited via fonts. No further information is currently available.

2) An error in libpixman can be exploited to cause a stack-based buffer overflow.

Successful exploitation of this vulnerability may allow execution of arbitrary code.

The vulnerabilities are reported in versions prior to 15.4.

poutnikl RE: Pale Moon Multiple Vulnerabilities
Member 19th Jan, 2013 11:49
Score: 0
Posts: 55
User Since: 8th May 2008
System Score: N/A
Location: CZ
Last edited on 19th Jan, 2013 11:49
Secunia PSI incoderectly detect PaleMoon browser version 15.4.0.4762 as insecure and tries to update it to supposedly secure version 15.4, which is the same.
After succesful update PSI realizes PM version 15.4.0.4762 is insecure, and tries to update it to 15.4....
After succesful update PSI realizes PM version 15.4.0.4762 is insecure, and tries to update it to 15.4....
After succesful update PSI realizes PM version 15.4.0.4762 is insecure, and tries to update it to 15.4....
Was this reply relevant?
+0
-0
Maurice Joyce RE: Pale Moon Multiple Vulnerabilities
Handling Contributor 19th Jan, 2013 16:29
Score: 12325
Posts: 9,575
User Since: 4th Jan 2009
System Score: N/A
Location: UK
Last edited on 21st Jan, 2013 17:54
I think you have made a valid point - see this thread

https://secunia.com/community/forum/thread/show/13...

EDIT: It looks like this has been corrected - see the new Secunia Support entry in the thread above.

--
Maurice

Microsoft Surface 4 Intel i7 64Bit
Windows 10 Pro version 1809 Build 17763.404
16 GB RAM
IE & Edge Only
Was this reply relevant?
+1
-0