Test Kennung:	1.3.6.1.4.1.25623.1.0.55360
Kategorie:	Gentoo Local Security Checks
Titel:	Gentoo Security Advisory GLSA 200509-11 (mozilla)
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing updates announced in advisory GLSA 200509-11. Mozilla Suite and Firefox are vulnerable to a buffer overflow that might be exploited to execute arbitrary code. Solution: All Mozilla Firefox users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=www-client/mozilla-firefox-1.0.6-r7' All Mozilla Suite users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=www-client/mozilla-1.7.11-r3' There are no fixed Mozilla Firefox or Mozilla Suite binaries yet. Users of the mozilla-bin or mozilla-firefox-bin packages should either switch to the source-based versions or apply the workaround. http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200509-11 http://bugs.gentoo.org/show_bug.cgi?id=105396 https://addons.mozilla.org/messages/307259.html CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	BugTraq ID: 14784 Common Vulnerability Exposure (CVE) ID: CVE-2005-2871 http://www.securityfocus.com/bid/14784 CERT/CC vulnerability note: VU#573857 http://www.kb.cert.org/vuls/id/573857 Computer Incident Advisory Center Bulletin: P-303 http://www.ciac.org/ciac/bulletins/p-303.shtml Debian Security Information: DSA-837 (Google Search) http://www.debian.org/security/2005/dsa-837 Debian Security Information: DSA-866 (Google Search) http://www.debian.org/security/2005/dsa-866 Debian Security Information: DSA-868 (Google Search) http://www.debian.org/security/2005/dsa-868 http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00004.html http://marc.info/?l=full-disclosure&m=112624614008387&w=2 http://archives.neohapsis.com/archives/fulldisclosure/2005-09/0316.html http://www.gentoo.org/security/en/glsa/glsa-200509-11.xml HPdes Security Advisory: HPSBUX01133 HPdes Security Advisory: SSRT5940 http://www.mandriva.com/security/advisories?name=MDKSA-2005:174 http://www.securiteam.com/securitynews/5RP0B0UGVW.html http://www.security-protocols.com/advisory/sp-x17-advisory.txt http://www.security-protocols.com/firefox-death.html http://www.osvdb.org/19255 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1287 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A584 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9608 http://www.redhat.com/support/errata/RHSA-2005-768.html http://www.redhat.com/support/errata/RHSA-2005-769.html http://www.redhat.com/support/errata/RHSA-2005-791.html http://securitytracker.com/id?1014877 http://secunia.com/advisories/16764 http://secunia.com/advisories/16766 http://secunia.com/advisories/16767 http://secunia.com/advisories/17042 http://secunia.com/advisories/17090 http://secunia.com/advisories/17263 http://secunia.com/advisories/17284 http://securityreason.com/securityalert/83 http://www.ubuntu.com/usn/usn-181-1 http://www.vupen.com/english/advisories/2005/1690 http://www.vupen.com/english/advisories/2005/1691 http://www.vupen.com/english/advisories/2005/1824 XForce ISS Database: mozilla-url-bo(22207) https://exchange.xforce.ibmcloud.com/vulnerabilities/22207
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.