Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | |||
ID de Prueba: | 1.3.6.1.4.1.25623.1.0.815728 |
Categoría: | General |
Título: | Mozilla Firefox ESR Security Update (mfsa_2019-36_2019-37) - Windows |
Resumen: | Mozilla Firefox ESR is prone to multiple vulnerabilities. |
Descripción: | Summary: Mozilla Firefox ESR is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws exist due to: - A use-after-free issue in worker destruction. - A stack corruption issue due to incorrect number of arguments in WebRTC code. - An out of bounds write issue in NSS when encrypting with a block cipher. - Unprivileged processes can access updater temporary files. - A use-after-free issue when performing device orientation checks. - A buffer overflow issue in plain text serializer. - A use-after-free issue when retrieving a document in antitracking. - Memory safety bugs. Vulnerability Impact: Successful exploitation of this vulnerability will allow remote attackers to execute arbitrary code, gain access to sensitive information and conduct denial of service attacks. Affected Software/OS: Mozilla Firefox ESR version before 68.3 on Windows. Solution: Update to Mozilla Firefox ESR version 68.3 or later. Please see the references for more information. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P |
Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2019-17008 Common Vulnerability Exposure (CVE) ID: CVE-2019-13722 Common Vulnerability Exposure (CVE) ID: CVE-2019-11745 Common Vulnerability Exposure (CVE) ID: CVE-2019-17009 Common Vulnerability Exposure (CVE) ID: CVE-2019-17010 Common Vulnerability Exposure (CVE) ID: CVE-2019-17005 Common Vulnerability Exposure (CVE) ID: CVE-2019-17011 Common Vulnerability Exposure (CVE) ID: CVE-2019-17012 |
Copyright | Copyright (C) 2019 Greenbone Networks GmbH |
Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |