Test ID:	1.3.6.1.4.1.25623.1.0.51197
Category:	Red Hat Local Security Checks
Title:	RedHat Security Advisory RHSA-2003:046
Summary:	NOSUMMARY
Description:	Description: The remote host is missing updates announced in advisory RHSA-2003:046. Updated Mozilla packages are now available for Red Hat Linux Advanced Server. These new packages fix vulnerabilities in previous versions of Mozilla. Mozilla is an open source Web browser. Versions of Mozilla prior to version 1.0.1 contain various security vulnerabilities. These vulnerabilities could be used by an attacker to read data off of the local hard drive, to gain information that should normally be kept private, and in some cases to execute arbitrary code. For more information on the specific vulnerabilities fixed please see the references below. All users of Mozilla should update to these errata packages containing Mozilla version 1.0.1 which is not vulnerable to these issues. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2003-046.html http://www.mozilla.org/releases/mozilla1.0.1/security-fixes-1.0.1.html http://bugzilla.mozilla.org/show_bug.cgi?id=145579 http://bugzilla.mozilla.org/show_bug.cgi?id=169982 Risk factor : High CVSS Score: 7.5
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2002-0593 BugTraq ID: 4637 http://www.securityfocus.com/bid/4637 Bugtraq: 20020430 RE: Reading local files in Netscape 6 and Mozilla (GM#001-NS) (Google Search) http://online.securityfocus.com/archive/1/270249 Conectiva Linux advisory: CLA-2002:490 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000490 http://secunia.com/advisories/8039 http://www.iss.net/security_center/static/8976.php Common Vulnerability Exposure (CVE) ID: CVE-2002-0594 BugTraq ID: 4640 http://www.securityfocus.com/bid/4640 http://www.redhat.com/support/errata/RHSA-2002-192.html http://www.redhat.com/support/errata/RHSA-2003-046.html http://www.iss.net/security_center/static/8977.php Common Vulnerability Exposure (CVE) ID: CVE-2002-1091 BugTraq ID: 5665 http://www.securityfocus.com/bid/5665 Bugtraq: 20020906 zero-width gif: exploit PoC for NS6.2.3 (fixed in 7.0) [Was: GIFs (Google Search) http://marc.info/?l=bugtraq&m=103134051120770&w=2 http://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:075 http://crash.ihug.co.nz/~Sneuro/zerogif/ http://www.iss.net/security_center/static/10058.php Common Vulnerability Exposure (CVE) ID: CVE-2002-1126 BugTraq ID: 5694 http://www.securityfocus.com/bid/5694 Bugtraq: 20020911 Privacy leak in mozilla (Google Search) http://marc.info/?l=bugtraq&m=103176760004720&w=2 http://www.iss.net/security_center/static/10084.php
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.