Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | |||
ID de Prueba: | 1.3.6.1.4.1.25623.1.0.803014 |
Categoría: | General |
Título: | Mozilla Products Memory Corruption Vulnerabilities - August12 (Mac OS X) |
Resumen: | This host is installed with Mozilla firefox/thunderbird/seamonkey and is; prone to multiple vulnerabilities. |
Descripción: | Summary: This host is installed with Mozilla firefox/thunderbird/seamonkey and is prone to multiple vulnerabilities. Vulnerability Insight: - Multiple unspecified errors within the browser engine can be exploited to corrupt memory. - Errors in 'Silf::readClassMap' and 'Pass::readPass' functions within Graphite 2 library. - An error within the DOMParser component fails to load sub resources during parsing of text/html data within an extension. - An error allows shadowing the location object using Object.defineProperty, allowing for possible XSS attacks Vulnerability Impact: Successful exploitation could allow attackers to inject scripts, bypass certain security restrictions, execute arbitrary code in the context of the browser or cause a denial of service. Affected Software/OS: SeaMonkey version before 2.12 on Mac OS X Thunderbird version before 15.0 on Mac OS X Mozilla Firefox version before 15.0 on Mac OS X Solution: Upgrade to Mozilla Firefox version 15.0 or later, upgrade to SeaMonkey version to 2.12 or later, upgrade to Thunderbird version to 15.0 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C |
Referencia Cruzada: |
BugTraq ID: 55249 Common Vulnerability Exposure (CVE) ID: CVE-2012-1956 BugTraq ID: 55260 http://www.securityfocus.com/bid/55260 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16367 RedHat Security Advisories: RHSA-2012:1351 http://rhn.redhat.com/errata/RHSA-2012-1351.html SuSE Security Announcement: SUSE-SU-2012:1157 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00011.html SuSE Security Announcement: SUSE-SU-2012:1167 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00014.html SuSE Security Announcement: openSUSE-SU-2012:1065 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00028.html http://www.ubuntu.com/usn/USN-1548-1 http://www.ubuntu.com/usn/USN-1548-2 Common Vulnerability Exposure (CVE) ID: CVE-2012-1971 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16841 Common Vulnerability Exposure (CVE) ID: CVE-2012-3971 BugTraq ID: 55304 http://www.securityfocus.com/bid/55304 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16062 Common Vulnerability Exposure (CVE) ID: CVE-2012-3975 BugTraq ID: 55311 http://www.securityfocus.com/bid/55311 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16855 |
Copyright | Copyright (C) 2012 Greenbone Networks GmbH |
Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |