Family: Red Hat Local Security Checks --> Category: infos
RHSA-2003-163: galeon Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the galeon packages
Detailed Explanation for this Vulnerability Test
Updated Mozilla packages that fix various bugs and security issues in
previous versions of Mozilla are now available.
Mozilla is an open source Web browser.
A heap-based buffer overflow in Netscape and Mozilla allows remote
attackers to execute arbitrary code via a jar: URL that references a
malformed .jar file, which overflows a buffer during decompression.
These errata packages upgrade Mozilla to version 1.0.2, which is not
vulnerable to this issue. Mozilla 1.0.2 also contains a number of other
stability and security updates.
Solution : http://rhn.redhat.com/errata/RHSA-2003-163.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.