Test Kennung:	1.3.6.1.4.1.25623.1.0.900395
Kategorie:	Denial of Service
Titel:	Netscape 'select()' Object Denial Of Service Vulnerability (Linux)
Zusammenfassung:	This host is installed with Netscape browser and is prone to;Denial of Service vulnerability.
Beschreibung:	Summary: This host is installed with Netscape browser and is prone to Denial of Service vulnerability. Vulnerability Insight: Error occurs while calling the 'select()' method with a large integer that results in continuous allocation of x+n bytes of memory exhausting memory after a while. Vulnerability Impact: Successful exploitation will allow attacker to cause a denial of service by exhausting memory. Affected Software/OS: Netscape version 6 and 8 on Linux Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 7.1 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C
Querverweis:	BugTraq ID: 35446 Common Vulnerability Exposure (CVE) ID: CVE-2009-2542 Bugtraq: 20090715 Re: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3.... (Google Search) http://www.securityfocus.com/archive/1/504989/100/0/threaded Bugtraq: 20090715 Re:[GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3.... (Google Search) http://www.securityfocus.com/archive/1/504988/100/0/threaded Bugtraq: 20090715 [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3.... (Google Search) http://www.securityfocus.com/archive/1/504969/100/0/threaded Bugtraq: 20090716 Re[2]: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3.... (Google Search) http://www.securityfocus.com/archive/1/505006/100/0/threaded http://www.exploit-db.com/exploits/9160 http://www.g-sec.lu/one-bug-to-rule-them-all.html XForce ISS Database: netscape-integer-value-dos(52876) https://exchange.xforce.ibmcloud.com/vulnerabilities/52876 Common Vulnerability Exposure (CVE) ID: CVE-2009-1692 http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html BugTraq ID: 35414 http://www.securityfocus.com/bid/35414 http://www.securityfocus.com/bid/35446 Debian Security Information: DSA-1950 (Google Search) http://www.debian.org/security/2009/dsa-1950 https://www.exploit-db.com/exploits/9160 https://bugs.webkit.org/show_bug.cgi?id=23319 http://osvdb.org/55242 http://secunia.com/advisories/36977 http://secunia.com/advisories/37746 http://secunia.com/advisories/43068 SuSE Security Announcement: SUSE-SR:2011:002 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html http://www.vupen.com/english/advisories/2009/1621 http://www.vupen.com/english/advisories/2011/0212
Copyright	Copyright (C) 2009 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.