Test ID:	1.3.6.1.4.1.25623.1.2.1.2014.51
Category:	General
Title:	Mozilla Firefox Security Advisory (MFSA2014-51) - Linux
Summary:	This host is missing a security update for Mozilla Firefox.
Description:	Summary: This host is missing a security update for Mozilla Firefox. Vulnerability Insight: Use-after-free in Event Listener Manager Security researchers Tyson Smith and Jesse Schwartzentruber of the BlackBerry Security Automated Analysis Team used the Address Sanitizer tool while fuzzing to discover a use-after-free in the event listener manager. This can be triggered by web content and leads to a potentially exploitable crash. This issue was introduced in Firefox 29 and does not affect earlier versions. Affected Software/OS: Firefox version(s) below 30. Solution: The vendor has released an update. Please see the reference(s) for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-1540 BugTraq ID: 67978 http://www.securityfocus.com/bid/67978 https://security.gentoo.org/glsa/201504-01 http://www.securitytracker.com/id/1030388 http://secunia.com/advisories/59052 http://secunia.com/advisories/59171 http://secunia.com/advisories/59387 http://secunia.com/advisories/59486 http://secunia.com/advisories/59866 SuSE Security Announcement: openSUSE-SU-2014:0819 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-06/msg00040.html SuSE Security Announcement: openSUSE-SU-2014:0855 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-07/msg00001.html http://www.ubuntu.com/usn/USN-2243-1
Copyright	Copyright (C) 2021 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.