Test Kennung:	1.3.6.1.4.1.25623.1.0.880463
Kategorie:	CentOS Local Security Checks
Titel:	CentOS Update for seamonkey CESA-2010:0967 centos4 i386
Zusammenfassung:	The remote host is missing an update for the 'seamonkey'; package(s) announced via the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'seamonkey' package(s) announced via the referenced advisory. Vulnerability Insight: SeaMonkey is an open source web browser, email and newsgroup client, IRC chat client, and HTML editor. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause SeaMonkey to crash or, potentially, execute arbitrary code with the privileges of the user running SeaMonkey. (CVE-2010-3767, CVE-2010-3772, CVE-2010-3776) A flaw was found in the way SeaMonkey loaded Java LiveConnect scripts. Malicious web content could load a Java LiveConnect script in a way that would result in the plug-in object having elevated privileges, allowing it to execute Java code with the privileges of the user running SeaMonkey. (CVE-2010-3775) All SeaMonkey users should upgrade to these updated packages, which correct these issues. After installing the update, SeaMonkey must be restarted for the changes to take effect. Affected Software/OS: seamonkey on CentOS 4 Solution: Please install the updated packages. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2010-3767 Debian Security Information: DSA-2132 (Google Search) http://www.debian.org/security/2010/dsa-2132 http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052032.html http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052022.html http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052502.html http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052504.html http://www.mandriva.com/security/advisories?name=MDVSA-2010:251 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12610 http://www.redhat.com/support/errata/RHSA-2010-0966.html http://www.redhat.com/support/errata/RHSA-2010-0967.html http://www.redhat.com/support/errata/RHSA-2010-0968.html http://www.securitytracker.com/id?1024848 http://secunia.com/advisories/42716 http://secunia.com/advisories/42818 SuSE Security Announcement: SUSE-SA:2011:003 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00002.html http://www.ubuntu.com/usn/USN-1019-1 http://www.vupen.com/english/advisories/2011/0030 Common Vulnerability Exposure (CVE) ID: CVE-2010-3772 BugTraq ID: 45351 http://www.securityfocus.com/bid/45351 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12324 Common Vulnerability Exposure (CVE) ID: CVE-2010-3775 BugTraq ID: 45355 http://www.securityfocus.com/bid/45355 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11666 Common Vulnerability Exposure (CVE) ID: CVE-2010-3776 BugTraq ID: 45347 http://www.securityfocus.com/bid/45347 http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052110.html http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052220.html http://www.mandriva.com/security/advisories?name=MDVSA-2010:258 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12389 http://www.redhat.com/support/errata/RHSA-2010-0969.html http://www.securitytracker.com/id?1024846 http://www.ubuntu.com/usn/USN-1020-1
Copyright	Copyright (C) 2011 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.