ID de Prueba:	1.3.6.1.4.1.25623.1.0.800860
Categoría:	Privilege escalation
Título:	Mozilla Firefox Chrome Privilege Escalation Vulnerability (Aug 2009) - Linux
Resumen:	Mozilla Firefox is prone to Chrome Privilege Escalation vulnerability.
Descripción:	Summary: Mozilla Firefox is prone to Chrome Privilege Escalation vulnerability. Vulnerability Insight: Error in 'nsDocument::SetScriptGlobalObject()' function in 'nsDocument.cpp' in content/base/src/ which does not properly handle a Link HTTP header, which allows remote attackers to execute arbitrary JavaScript with chrome privileges via a crafted web page, related to an incorrect security wrapper. Vulnerability Impact: Successful exploitation will let attacker to execute arbitrary JavaScript with chrome privileges when certain add-ons are enabled. Affected Software/OS: Firefox version 3.5 before 3.5.2 on Linux. Solution: Upgrade to Firefox version 3.5.2. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-2665 BugTraq ID: 35928 http://www.securityfocus.com/bid/35928 https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00198.html https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00261.html http://secunia.com/advisories/36126 http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1 http://www.vupen.com/english/advisories/2009/2142
Copyright	Copyright (C) 2009 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.