Test Kennung:	1.3.6.1.4.1.25623.1.0.802547
Kategorie:	General
Titel:	Mozilla Firefox Cache Objects History Enumeration Weakness Vulnerability (Windows)
Zusammenfassung:	The host is installed with Mozilla Firefox and is prone to cache;objects history enumeration weakness vulnerability.
Beschreibung:	Summary: The host is installed with Mozilla Firefox and is prone to cache objects history enumeration weakness vulnerability. Vulnerability Insight: The flaw is caused due an error in handling cache objects and can be exploited to enumerate visited sites. Vulnerability Impact: Successful exploitation allows remote attackers to extraction browser history by observing cache timing via crafted JavaScript code. Affected Software/OS: Mozilla Firefox versions 8.0.1 and prior on Windows. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2011-4688 http://lcamtuf.coredump.cx/cachetime/ https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13770 http://secunia.com/advisories/47090
Copyright	Copyright (c) 2011 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.