 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.806515 |
| Categoría: | General |
| Título: | Mozilla Firefox Cross-Origin Restriction Bypass Vulnerability Oct15 (Mac OS X) |
| Resumen: | This host is installed with Mozilla; Firefox and is prone to cross-origin restriction bypass vulnerability. |
| Descripción: | Summary: This host is installed with Mozilla Firefox and is prone to cross-origin restriction bypass vulnerability. Vulnerability Insight: The flaw is due to fetch API implementation did not correctly implement the Cross-Origin Resource Sharing (CORS) specification. Vulnerability Impact: Successful exploitation will allow remote attackers to bypass the Same Origin Policy via a crafted web site thus to access private data from other origins. Affected Software/OS: Mozilla Firefox version before 41.0.2 on Mac OS X Solution: Upgrade to Mozilla Firefox version 41.0.2 or later. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P |
| Referencia Cruzada: |
BugTraq ID: 77100 Common Vulnerability Exposure (CVE) ID: CVE-2015-7184 http://www.securityfocus.com/bid/77100 http://www.securitytracker.com/id/1033820 SuSE Security Announcement: openSUSE-SU-2015:1817 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00021.html http://www.ubuntu.com/usn/USN-2768-1 |
| Copyright | Copyright (C) 2015 Greenbone Networks GmbH |
| Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |