ID de Prueba:	1.3.6.1.4.1.25623.1.0.805544
Categoría:	General
Título:	Mozilla Firefox Plugin Initialization Use-after-free Vulnerability- Apr15 (Windows)
Resumen:	This host is installed with Mozilla; Firefox and is prone to use-after-free vulnerability.
Descripción:	Summary: This host is installed with Mozilla Firefox and is prone to use-after-free vulnerability. Vulnerability Insight: The error exists due to a use-after-free error related to the 'AsyncPaintWaitEvent::AsyncPaintWaitEvent' function that is triggered when a race condition occurs when plugin initialization fails. Vulnerability Impact: Successful exploitation will allow remote attacker to conduct denial-of-service attack and potentially execute arbitrary code. Affected Software/OS: Mozilla Firefox before version 37.0.2 on Windows Solution: Upgrade to Mozilla Firefox version 37.0.2 or later. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-2706 BugTraq ID: 74247 http://www.securityfocus.com/bid/74247 https://security.gentoo.org/glsa/201512-10 http://www.securitytracker.com/id/1032171 SuSE Security Announcement: openSUSE-SU-2015:0761 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-04/msg00044.html SuSE Security Announcement: openSUSE-SU-2015:0763 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-04/msg00046.html http://www.ubuntu.com/usn/USN-2571-1
Copyright	Copyright (C) 2015 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.