ID de Prueba:	1.3.6.1.4.1.25623.1.0.800377
Categoría:	Denial of Service
Título:	Firefox XSL Parsing Vulnerability - Linux
Resumen:	Mozilla Firefox browser is prone to XSL File Parsing Vulnerability.
Descripción:	Summary: Mozilla Firefox browser is prone to XSL File Parsing Vulnerability. Vulnerability Insight: This flaw is due to improper handling of errors encountered when transforming an XML document which can be exploited to cause memory corrpution through a specially crafted XSLT code. Vulnerability Impact: Successful exploitation will let the attacker cause remote code execution through a specially crafted malicious XSL file or can cause application termination at runtime. Affected Software/OS: Firefox version 3.0 to 3.0.7 on Linux. Solution: Upgrade to Firefox version 3.0.8. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1169 1021939 http://www.securitytracker.com/id?1021939 34235 http://www.securityfocus.com/bid/34235 34471 http://secunia.com/advisories/34471 34486 http://secunia.com/advisories/34486 34505 http://secunia.com/advisories/34505 34510 http://secunia.com/advisories/34510 34511 http://secunia.com/advisories/34511 34521 http://secunia.com/advisories/34521 34527 http://secunia.com/advisories/34527 34549 http://secunia.com/advisories/34549 34550 http://secunia.com/advisories/34550 34792 http://secunia.com/advisories/34792 8285 https://www.exploit-db.com/exploits/8285 ADV-2009-0853 http://www.vupen.com/english/advisories/2009/0853 DSA-1756 http://www.debian.org/security/2009/dsa-1756 FEDORA-2009-3099 https://www.redhat.com/archives/fedora-package-announce/2009-March/msg01023.html FEDORA-2009-3100 https://www.redhat.com/archives/fedora-package-announce/2009-March/msg01040.html FEDORA-2009-3101 https://www.redhat.com/archives/fedora-package-announce/2009-March/msg01077.html MDVSA-2009:084 http://www.mandriva.com/security/advisories?name=MDVSA-2009:084 RHSA-2009:0397 http://www.redhat.com/support/errata/RHSA-2009-0397.html RHSA-2009:0398 http://www.redhat.com/support/errata/RHSA-2009-0398.html SUSE-SA:2009:022 http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00008.html SUSE-SA:2009:023 http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00009.html USN-745-1 http://www.ubuntu.com/usn/usn-745-1 http://blogs.zdnet.com/security/?p=3013 http://support.avaya.com/elmodocs2/security/ASA-2009-113.htm http://www.mozilla.org/security/announce/2009/mfsa2009-12.html https://bugzilla.mozilla.org/show_bug.cgi?id=460090 https://bugzilla.mozilla.org/show_bug.cgi?id=485217 https://bugzilla.mozilla.org/show_bug.cgi?id=485286 mozilla-xslt-code-execution(49439) https://exchange.xforce.ibmcloud.com/vulnerabilities/49439 oval:org.mitre.oval:def:11372 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11372
Copyright	Copyright (C) 2009 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.