Test Kennung:	1.3.6.1.4.1.25623.1.0.844458
Kategorie:	Ubuntu Local Security Checks
Titel:	Ubuntu: Security Advisory for firefox (USN-4383-1)
Zusammenfassung:	The remote host is missing an update for the 'firefox'; package(s) announced via the USN-4383-1 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'firefox' package(s) announced via the USN-4383-1 advisory. Vulnerability Insight: Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, spoof the addressbar, or execute arbitrary code. (CVE-2020-12405, CVE-2020-12406, CVE-2020-12407, CVE-2020-12408, CVE-2020-12409, CVE-2020-12410, CVE-2020-12411) It was discovered that NSS showed timing differences when performing DSA signatures. An attacker could potentially exploit this to obtain private keys using a timing attack. (CVE-2020-12399) Affected Software/OS: 'firefox' package(s) on Ubuntu 20.04 LTS, Ubuntu 19.10, Ubuntu 18.04 LTS, Ubuntu 16.04 LTS. Solution: Please install the updated package(s). CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2020-12405 Common Vulnerability Exposure (CVE) ID: CVE-2020-12406 Common Vulnerability Exposure (CVE) ID: CVE-2020-12407 Common Vulnerability Exposure (CVE) ID: CVE-2020-12408 Common Vulnerability Exposure (CVE) ID: CVE-2020-12409 Common Vulnerability Exposure (CVE) ID: CVE-2020-12410 Common Vulnerability Exposure (CVE) ID: CVE-2020-12411 Common Vulnerability Exposure (CVE) ID: CVE-2020-12399
Copyright	Copyright (C) 2020 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.