Test Kennung:	1.3.6.1.4.1.25623.1.0.122392
Kategorie:	Oracle Linux Local Security Checks
Titel:	Oracle: Security Advisory (ELSA-2010-0112)
Zusammenfassung:	The remote host is missing an update for the 'firefox, xulrunner' package(s) announced via the ELSA-2010-0112 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'firefox, xulrunner' package(s) announced via the ELSA-2010-0112 advisory. Vulnerability Insight: firefox: [3.0.18-1.0.1.el5_4] - Update firstrun and homepage URLs in specfile - Added patch oracle-firefox-branding.patch - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html and removed the corresponding RedHat ones [3.0.18-1] - Update to 3.0.18 xulrunner: [1.9.0.18-1.0.1.el5_4] - Added xulrunner-oracle-default-prefs.js and removed the corresponding RedHat one. [1.9.0.18-1] - Update to 1.9.0.18 Affected Software/OS: 'firefox, xulrunner' package(s) on Oracle Linux 4, Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1571 Bugtraq: 20100218 Secunia Research: Mozilla Firefox Memory Corruption Vulnerability (Google Search) http://www.securityfocus.com/archive/1/509585/100/0/threaded Debian Security Information: DSA-1999 (Google Search) http://www.debian.org/security/2010/dsa-1999 http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035426.html http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035346.html http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035367.html http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036097.html http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036132.html http://www.mandriva.com/security/advisories?name=MDVSA-2010:042 http://www.mandriva.com/security/advisories?name=MDVSA-2010:051 http://secunia.com/secunia_research/2009-45/ https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11227 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8615 http://www.redhat.com/support/errata/RHSA-2010-0112.html http://www.redhat.com/support/errata/RHSA-2010-0113.html http://www.redhat.com/support/errata/RHSA-2010-0153.html http://www.redhat.com/support/errata/RHSA-2010-0154.html http://secunia.com/advisories/37242 http://secunia.com/advisories/38770 http://secunia.com/advisories/38772 http://secunia.com/advisories/38847 SuSE Security Announcement: SUSE-SA:2010:015 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00001.html http://www.ubuntu.com/usn/USN-895-1 http://www.ubuntu.com/usn/USN-896-1 http://www.vupen.com/english/advisories/2010/0405 http://www.vupen.com/english/advisories/2010/0650 XForce ISS Database: mozilla-htmlparser-code-exec(56361) https://exchange.xforce.ibmcloud.com/vulnerabilities/56361 Common Vulnerability Exposure (CVE) ID: CVE-2009-3988 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8355 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9384 XForce ISS Database: mozilla-showmodaldialog-xss(56362) https://exchange.xforce.ibmcloud.com/vulnerabilities/56362 Common Vulnerability Exposure (CVE) ID: CVE-2010-0159 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8485 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9590 XForce ISS Database: mozilla-browsereng-code-execution(56359) https://exchange.xforce.ibmcloud.com/vulnerabilities/56359 Common Vulnerability Exposure (CVE) ID: CVE-2010-0160 Bugtraq: 20100402 ZDI-10-046: Mozilla Firefox Web Worker Array Remote Code Execution Vulnerability (Google Search) http://www.securityfocus.com/archive/1/510533/100/0/threaded http://www.zerodayinitiative.com/advisories/ZDI-10-046 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11166 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8465 XForce ISS Database: mozilla-webworkers-code-execution(56360) https://exchange.xforce.ibmcloud.com/vulnerabilities/56360 Common Vulnerability Exposure (CVE) ID: CVE-2010-0162 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10697 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8631 XForce ISS Database: mozilla-svg-xss(56363) https://exchange.xforce.ibmcloud.com/vulnerabilities/56363 Common Vulnerability Exposure (CVE) ID: CVE-2010-0167 BugTraq ID: 38918 http://www.securityfocus.com/bid/38918 BugTraq ID: 38944 http://www.securityfocus.com/bid/38944 http://www.mandriva.com/security/advisories?name=MDVSA-2010:070 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8610 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9835 http://www.vupen.com/english/advisories/2010/0692 Common Vulnerability Exposure (CVE) ID: CVE-2010-0169 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11391 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8431 Common Vulnerability Exposure (CVE) ID: CVE-2010-0171 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10773 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7743
Copyright	Copyright (C) 2015 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.