|
Family: SuSE Local Security Checks --> Category: infos
SUSE-SA:2005:058: mozilla,MozillaFirefox Vulnerability Scan
Vulnerability Scan Summary Check for the version of the mozilla,MozillaFirefox package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory SUSE-SA:2005:058 (mozilla,MozillaFirefox).
The web browsers Mozilla and Mozilla Firefox have been updated to
contain fixes for the vulnerabilities fixed in:
- Mozilla browser suite version 1.7.12
- Mozilla Firefox version 1.0.7
The security problems with their corresponding Mitre CVE ID are:
- CVE-2005-2701: Heap overrun in XBM image processing
- CVE-2005-2702: Crash on 'zero-width non-joiner' sequence
- CVE-2005-2703: XMLHttpRequest header spoofing
- CVE-2005-2704: Object spoofing using XBL
- CVE-2005-2705: Javascript integer overflow
- CVE-2005-2706: Privilege escalation using about: scheme
- CVE-2005-2707: Chrome window spoofing
Solution : http://www.suse.de/security/advisories/2005_58_mozilla.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|