CentOS Local Security Checks : CentOS Update for firefox CESA-2009:0449 centos4 i386

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.880894

Categoría: CentOS Local Security Checks

Título: CentOS Update for firefox CESA-2009:0449 centos4 i386

Resumen: The remote host is missing an update for the 'firefox'; package(s) announced via the referenced advisory.

Descripción: Summary:
The remote host is missing an update for the 'firefox'
package(s) announced via the referenced advisory.

Vulnerability Insight:
Mozilla Firefox is an open source Web browser. XULRunner provides the XUL
Runtime environment for Mozilla Firefox.

A flaw was found in the processing of malformed web content. A web
page containing malicious content could cause Firefox to crash or,
potentially, execute arbitrary code as the user running Firefox.
(CVE-2009-1313)

For technical details regarding this flaw, refer to the Mozilla security
advisory for Firefox 3.0.10. You can find a link to the Mozilla advisories
in the References section of this errata.

All Firefox users should upgrade to these updated packages, which contain
Firefox version 3.0.10, which corrects this issue. After installing the
update, Firefox must be restarted for the change to take effect.

Affected Software/OS:
firefox on CentOS 4

Solution:
Please install the updated packages.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2009-1313
1022126
http://securitytracker.com/id?1022126
1022127
http://securitytracker.com/id?1022127
34743
http://www.securityfocus.com/bid/34743
34851
http://secunia.com/advisories/34851
34866
http://secunia.com/advisories/34866
34910
http://secunia.com/advisories/34910
34919
http://secunia.com/advisories/34919
ADV-2009-1180
http://www.vupen.com/english/advisories/2009/1180
MDVSA-2009:111
http://www.mandriva.com/security/advisories?name=MDVSA-2009:111
RHSA-2009:0449
https://rhn.redhat.com/errata/RHSA-2009-0449.html
SSA:2009-118-01
http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.350967
USN-765-1
http://www.ubuntu.com/usn/USN-765-1
http://www.mozilla.org/security/announce/2009/mfsa2009-23.html
https://bugzilla.mozilla.org/show_bug.cgi?id=489647
https://bugzilla.mozilla.org/show_bug.cgi?id=489676
https://bugzilla.mozilla.org/show_bug.cgi?id=490233
https://bugzilla.redhat.com/show_bug.cgi?id=497447
oval:org.mitre.oval:def:10446
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10446

Copyright Copyright (C) 2011 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.880894
Categoría:	CentOS Local Security Checks
Título:	CentOS Update for firefox CESA-2009:0449 centos4 i386
Resumen:	The remote host is missing an update for the 'firefox'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 'firefox' package(s) announced via the referenced advisory. Vulnerability Insight: Mozilla Firefox is an open source Web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. A flaw was found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox. (CVE-2009-1313) For technical details regarding this flaw, refer to the Mozilla security advisory for Firefox 3.0.10. You can find a link to the Mozilla advisories in the References section of this errata. All Firefox users should upgrade to these updated packages, which contain Firefox version 3.0.10, which corrects this issue. After installing the update, Firefox must be restarted for the change to take effect. Affected Software/OS: firefox on CentOS 4 Solution: Please install the updated packages. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1313 1022126 http://securitytracker.com/id?1022126 1022127 http://securitytracker.com/id?1022127 34743 http://www.securityfocus.com/bid/34743 34851 http://secunia.com/advisories/34851 34866 http://secunia.com/advisories/34866 34910 http://secunia.com/advisories/34910 34919 http://secunia.com/advisories/34919 ADV-2009-1180 http://www.vupen.com/english/advisories/2009/1180 MDVSA-2009:111 http://www.mandriva.com/security/advisories?name=MDVSA-2009:111 RHSA-2009:0449 https://rhn.redhat.com/errata/RHSA-2009-0449.html SSA:2009-118-01 http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.350967 USN-765-1 http://www.ubuntu.com/usn/USN-765-1 http://www.mozilla.org/security/announce/2009/mfsa2009-23.html https://bugzilla.mozilla.org/show_bug.cgi?id=489647 https://bugzilla.mozilla.org/show_bug.cgi?id=489676 https://bugzilla.mozilla.org/show_bug.cgi?id=490233 https://bugzilla.redhat.com/show_bug.cgi?id=497447 oval:org.mitre.oval:def:10446 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10446
Copyright	Copyright (C) 2011 Greenbone AG