Mandriva Security Advisory MDVSA-2009:290 (firefox) Network Vulnerability

Summary

The remote host is missing an update to firefox announced via advisory MDVSA-2009:290.

Solution

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2009:290 http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.15

Insight

For details on the issues addressed in this update, please visit the referenced security advisories. This update provides the latest Mozilla Firefox 3.0.x to correct these issues. Additionally, some packages which require so, have been rebuilt and are being provided as updates. Affected: 2009.1, Enterprise Server 5.0

Severity

Classification

CVE CVE-2009-0689, CVE-2009-3274, CVE-2009-3370, CVE-2009-3372, CVE-2009-3373, CVE-2009-3374, CVE-2009-3375, CVE-2009-3376, CVE-2009-3380, CVE-2009-3382
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Mandrake Security Advisory MDVSA-2009:057 (valgrind)
Mandrake Security Advisory MDVSA-2009:166 (c-client)
Mandrake Security Advisory MDVSA-2009:045 (php)
Mandrake Security Advisory MDVSA-2009:095 (ghostscript)
Mandrake Security Advisory MDVSA-2009:134 (firefox)

Take action and discover your vulnerabilities