Summary
The host is installed with Firefox browser and is prone to multiple vulnerabilities.
Impact
Successful exploitation could allow remote attacker to execute arbitrary code, memory corruption, XSS attacks and results in Denial of Service condition.
Impact Level: System/Application
Solution
Upgrade to Firefox version 3.0.12 or 3.5 or later
http://www.mozilla.com/en-US/firefox/all.html
Insight
Multiple flaws are reported in Firefox, for more information refer below reference links.
Affected
Mozilla Firefox version prior to 3.0.12 on Linux.
References
- http://www.mozilla.org/security/announce/2009/mfsa2009-34.html
- http://www.mozilla.org/security/announce/2009/mfsa2009-37.html
- http://www.mozilla.org/security/announce/2009/mfsa2009-39.html
- http://www.mozilla.org/security/announce/2009/mfsa2009-40.html
- http://www.vupen.com/english/advisories/2009/1972
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2009-2462, CVE-2009-2463, CVE-2009-2464, CVE-2009-2465, CVE-2009-2466, CVE-2009-2469, CVE-2009-2471, CVE-2009-2472 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Google Chrome Multiple Denial of Service Vulnerabilities - February 11(Windows)
- Adersoft VbsEdit '.vbs' File Denial Of Service Vulnerability
- Adobe Flash Player/Air Multiple Vulnerabilities - August10 (Linux)
- Google Chrome Multiple Denial of Service Vulnerabilities - March12 (Windows)
- Colasoft Capsa Malformed SNMP V1 Packet Remote Denial of Service Vulnerability