Vulnerability Scanning Solutions, LLC.
Home
Our Process
Residential
Corporate
What We Scan For
Sample Report
Client List
Terms
Contact Us
What We Scan For
Family: Ubuntu Local Security Checks --> Category: infos

USN181-1 : mozilla, mozilla-thunderbird, mozilla-firefox vulnerabilities Vulnerability Scan


Vulnerability Scan Summary
mozilla, mozilla-thunderbird, mozilla-firefox vulnerabilities

Detailed Explanation for this Vulnerability Test

Synopsis :

These remote packages are missing security patches :
- libnspr-dev
- libnspr4
- libnss-dev
- libnss3
- mozilla
- mozilla-browser
- mozilla-calendar
- mozilla-chatzilla
- mozilla-dev
- mozilla-dom-inspector
- mozilla-firefox
- mozilla-firefox-dev
- mozilla-firefox-dom-inspector
- mozilla-firefox-gnome-support
- mozilla-js-debugger
- mozilla-mailnews
- mozilla-psm
- mozilla-thunderbird
- mozilla-thunderbird-dev
- mozilla-thunderbird-inspector
- mozilla-thunderbird-offline
- mozilla-thund
[...]

Description :

Tom Ferris discovered a buffer overflow in the Mozilla products
(Mozilla browser, Firefox, Thunderbird). By tricking an user to click
on a Hyperlink with a specially crafted destination URL, a remote
attacker could crash the application. It might even be possible to
exploit this vulnerability to execute arbitrary code, but this has
not yet been confirmed.

Solution :

Upgrade to :
- libnspr-dev-1.7.10-0ubuntu05.04.1 (Ubuntu 4.10)
- libnspr4-1.7.10-0ubuntu05.04.1 (Ubuntu 4.10)
- libnss-dev-1.7.10-0ubuntu05.04.1 (Ubuntu 4.10)
- libnss3-1.7.10-0ubuntu05.04.1 (Ubuntu 4.10)
- mozilla-1.7.10-0ubuntu05.04.1 (Ubuntu 4.10)
- mozilla-browser-1.7.10-0ubuntu05.04.1 (Ubuntu 4.10)
- mozilla-calendar-1.7.10-0ubuntu05.04.1 (Ubuntu 4.10)
- mozilla-chatzilla-1.7.10-0ubuntu05.04.1 (Ubuntu 4.10)
- mozilla-dev-1.7.10-0ubuntu05.04.1 (Ubuntu 4.10)
- mozilla-dom-inspector-1.7.10-0ubuntu05.04.
[...]


Threat Level: High


Click HERE for more information and discussions on this network vulnerability scan.

VSS, LLC.

P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.