|
Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200609-19] Mozilla Firefox: Multiple vulnerabilities Vulnerability Scan
Vulnerability Scan Summary Mozilla Firefox: Multiple vulnerabilities
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200609-19
(Mozilla Firefox: Multiple vulnerabilities)
A number of vulnerabilities were found and fixed in Mozilla Firefox.
For details please consult the references below.
Impact
The most severe vulnerability involves enticing a user to visit a
malicious website, crashing the browser and executing arbitrary code
with the rights of the user running the application.
Workaround
There is no known workaround at this time.
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4253
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4340
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4565
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4566
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4567
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4568
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4569
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4571
Solution:
All Mozilla Firefox users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=www-client/mozilla-firefox-1.5.0.7"
Users of the binary package should upgrade as well:
# emerge --sync
# emerge --ask --oneshot --verbose ">=www-client/mozilla-firefox-bin-1.5.0.7"
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|