Test Kennung:	1.3.6.1.4.1.25623.1.0.64871
Kategorie:	Debian Local Security Checks
Titel:	Debian Security Advisory DSA 1886-1 (iceweasel)
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing an update to iceweasel announced via advisory DSA 1886-1. Several remote vulnerabilities have been discovered in the Iceweasel web browser, an unbranded version of the Firefox browser. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-3079 moz_bug_r_a4 discovered that a programming error in the FeedWriter module could lead to the execution of Javascript code with elevated privileges. CVE-2009-1310 Prateek Saxena discovered a cross-site scripting vulnerability in the MozSearch plugin interface. For the stable distribution (lenny), these problems have been fixed in version 3.0.6-3. As indicated in the Etch release notes, security support for the Mozilla products in the oldstable distribution needed to be stopped before the end of the regular Etch security maintenance life cycle. You are strongly encouraged to upgrade to stable or switch to a still supported browser. For the unstable distribution (sid), these problems have been fixed in version 3.0.14-1. For the experimental distribution, these problems have been fixed in version 3.5.3-1. We recommend that you upgrade your iceweasel packages. Solution: http://www.securityspace.com/smysecure/catid.html?in=DSA%201886-1 CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1310 BugTraq ID: 34656 http://www.securityfocus.com/bid/34656 Debian Security Information: DSA-1886 (Google Search) http://www.debian.org/security/2009/dsa-1886 https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00683.html http://www.mandriva.com/security/advisories?name=MDVSA-2009:111 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11520 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6242 http://www.redhat.com/support/errata/RHSA-2009-0436.html http://www.securitytracker.com/id?1022097 http://secunia.com/advisories/34758 http://secunia.com/advisories/34843 http://secunia.com/advisories/34894 http://secunia.com/advisories/35065 http://secunia.com/advisories/36757 http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1 SuSE Security Announcement: SUSE-SR:2009:010 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.html https://usn.ubuntu.com/764-1/ http://www.vupen.com/english/advisories/2009/1125 Common Vulnerability Exposure (CVE) ID: CVE-2009-3079 BugTraq ID: 36343 http://www.securityfocus.com/bid/36343 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10390 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6250 http://www.redhat.com/support/errata/RHSA-2009-1430.html http://www.securitytracker.com/id?1022873 http://secunia.com/advisories/36670 http://secunia.com/advisories/36671 http://secunia.com/advisories/37098 SuSE Security Announcement: SUSE-SA:2009:048 (Google Search) http://www.novell.com/linux/security/advisories/2009_48_firefox.html
Copyright	Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.