##############################################################################
#
#  SeaMonkey Multiple Vulnerabilities In Versions < 1.0.2 (Windows)
#
#  Copyright: OS2A and it's member companies
#
#  Date Written: 2006/06/02
#
#  $Revision: 1.1 $
#
#  $Log: os2a_seamonkey_mult_vuln2_win_601894.nasl,v $
#  Revision 1.1  2006/06/02 17:59:18  bchandra
#  Issue #2507 To production
#
#  Revision 1.3  2006/06/02 14:54:21  schandan
#  Issue #2507
#
#  Revision 1.2  2006/06/02 13:31:07  nrnandini
#   - Foramtting changes.
#
#  Revision 1.1  2006/06/02 10:47:50  hshreesha
#  issue #2507
#
#  ------------------------------------------------------------------------
#  This program was written by OS2A and/or it's member companies and is
#  licensed under the GNU GPL license. Please see below for details. This
#  header contains information regarding licensing terms under the GPL, and
#  information regarding obtaining source code from the Author. Consequently,
#  pursuant to section 3(c) of the GPL, you must accompany the information
#  found in this header with any distribution you make of this Program.
#  ------------------------------------------------------------------------
##############################################################################


if(description)
{
 script_id(601894);
 script_copyright(english:"Copyright (C) 2006 OS2A");
 script_version("$Revision: 1.1 $");
 script_category(ACT_GATHER_INFO);
 script_family(english:"Misc.");
 script_name(english:"SeaMonkey Multiple Vulnerabilities In Versions < 1.0.2 (Windows)");
 script_summary(english:"Check for vulnerable version of SeaMonkey");
 desc["english"] = "
 Overview : This host has SeaMonkey installed, which is prone to multiple 
 vulnerabilities.

 Vulnerability Insight : The issues are,
 - A double-free error when processing a large VCard containing invalid base64
   characters
 - An error related to nsISelectionPrivate interface

 Impact : Successful exploitation of these issues can lead to execution of
 arbitrary code.
 
 The impact is restricted to system level.
 
 Affected Software : SeaMonkey versions prior to 1.0.2

 Affected Platform : Windows (Any).

 Solution : Upgrade to version 1.0.2,
            http://www.mozilla.org/projects/seamonkey/

 References : http://www.mozilla.org/security/announce/2006/mfsa2006-40.html
              http://www.mozilla.org/security/announce/2006/mfsa2006-43.html
 
 Risk factor : Critical";
 script_description(english:desc["english"]);
 script_dependencies("smb_hotfixes.nasl", "mozilla_firefox_code_exec.nasl");
 script_require_keys("SMB/WindowsVersion", "Mozilla/SeaMonkey/Version");
 exit(0);
}
 

 if(get_kb_item("SMB/WindowsVersion"))
 {
        seamnkVer  = get_kb_item("Mozilla/SeaMonkey/Version");
        if(seamnkVer)
        {
                if(ereg(pattern:"^(0\..*|1\.0(\.[01])?([^.0-9]|$))",
                        string:seamnkVer)){
                        security_hole(0);
                }
        }
 }