Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Fedora Local Security Checks
Title:Fedora Core 10 FEDORA-2009-3893 (epiphany)
The remote host is missing an update to epiphany
announced via advisory FEDORA-2009-3893.

Update Information:

* Tue Apr 21 2009 Christopher Aillon - 2.24.3-5
- Rebuild against newer gecko
* Fri Mar 27 2009 Christopher Aillon - 2.24.3-4
- Rebuild against newer gecko


[ 1 ] Bug #496252 - CVE-2009-1302 Firefox 3 Layout engine crashes
[ 2 ] Bug #496253 - CVE-2009-1303 Firefox 2 and 3 Layout engine crash
[ 3 ] Bug #496255 - CVE-2009-1304 Firefox 3 JavaScript engine crashes
[ 4 ] Bug #496256 - CVE-2009-1305 Firefox 2 and 3 JavaScript engine crash
[ 5 ] Bug #486704 - CVE-2009-0652 firefox: does not properly prevent the literal rendering of homoglyph characters in IDN domain names (spoof URLs and conduct phishing attacks)
[ 6 ] Bug #496262 - CVE-2009-1306 Firefox jar: scheme ignores the content-disposition: header on the inner URI
[ 7 ] Bug #496263 - CVE-2009-1307 Firefox Same-origin violations when Adobe Flash loaded via view-source: protocol
[ 8 ] Bug #496266 - CVE-2009-1308 Firefox XSS hazard using third-party stylesheets and XBL bindings
[ 9 ] Bug #496267 - CVE-2009-1309 Firefox Same-origin violations in XMLHttpRequest and XPCNativeWrapper.toString
[ 10 ] Bug #496270 - CVE-2009-1310 Firefox Malicious search plugins can inject code into arbitrary sites
[ 11 ] Bug #496271 - CVE-2009-1311 Firefox POST data sent to wrong site when saving web page with embedded frame
[ 12 ] Bug #496274 - CVE-2009-1312 Firefox allows Refresh header to redirect to javascript: URIs

Solution: Apply the appropriate updates.

This update can be installed with the yum update program. Use
su -c 'yum update epiphany' at the command line.
For more information, refer to Managing Software with yum,
available at

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2009-1302
BugTraq ID: 34656
Debian Security Information: DSA-1797 (Google Search)
Debian Security Information: DSA-1830 (Google Search)
SuSE Security Announcement: SUSE-SR:2009:010 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2009-1303
RedHat Security Advisories: RHSA-2009:0437
Common Vulnerability Exposure (CVE) ID: CVE-2009-1304
Common Vulnerability Exposure (CVE) ID: CVE-2009-1305
Common Vulnerability Exposure (CVE) ID: CVE-2009-0652
BugTraq ID: 33837
XForce ISS Database: mozilla-firefox-homoglyph-spoofing(48974)
Common Vulnerability Exposure (CVE) ID: CVE-2009-1306
Common Vulnerability Exposure (CVE) ID: CVE-2009-1307
Common Vulnerability Exposure (CVE) ID: CVE-2009-1308
Common Vulnerability Exposure (CVE) ID: CVE-2009-1309
Common Vulnerability Exposure (CVE) ID: CVE-2009-1310
Debian Security Information: DSA-1886 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2009-1311
Common Vulnerability Exposure (CVE) ID: CVE-2009-1312
Bugtraq: 20090702 Cross-Site Scripting vulnerabilities in Mozilla, Internet Explorer, Opera and Chrome (Google Search)
Bugtraq: 20090703 Re: Cross-Site Scripting vulnerabilities in Mozilla, Internet Explorer, Opera and Chrome (Google Search)
CopyrightCopyright (c) 2009 E-Soft Inc.

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2022 E-Soft Inc. All rights reserved.