|
|
Family: Windows --> Category: infos
Firefox < 1.5.0.3 Vulnerability Scan
Vulnerability Scan Summary
Checks Firefox version number
Detailed Explanation for this Vulnerability Test
Synopsis :
A web browser on the remote host may be prone to a denial of service
attack.
Description :
The installed version of Firefox may allow a malicious site to crash
the browser and potentially to run malicious code when attempting to
use a deleted controller context.
Successful exploitation requires that 'designMode' be turned on.
See also :
http://www.securityfocus.com/archive/1/archive/1/431878/100/0/threaded
http://www.mozilla.org/security/announce/2006/mfsa2006-30.html
Solution :
Upgrade to Firefox 1.5.0.3 or later.
Threat Level:
Medium / CVSS Base Score : 5.6
(AV:R/AC:H/Au:NR/C:P/I:P/A:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|
