ID de Prueba:	1.3.6.1.4.1.25623.1.0.122378
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2010-0332)
Resumen:	The remote host is missing an update for the 'firefox, xulrunner' package(s) announced via the ELSA-2010-0332 advisory.
Descripción:	Summary: The remote host is missing an update for the 'firefox, xulrunner' package(s) announced via the ELSA-2010-0332 advisory. Vulnerability Insight: firefox: [3.0.19-1.0.1.el5_5] - Update firstrun and homepage URLs in specfile - Added patch oracle-firefox-branding.patch - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html and removed the corresponding RedHat ones [3.0.19-1] - Update to 3.0.19 xulrunner: [1.9.0.19-1.0.1.el5_5] - Added xulrunner-oracle-default-prefs.js and removed the corresponding RedHat one. [1.9.0.19-1] - Update to 1.9.0.19 Affected Software/OS: 'firefox, xulrunner' package(s) on Oracle Linux 4, Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0174 Debian Security Information: DSA-2027 (Google Search) http://www.debian.org/security/2010/dsa-2027 http://lists.fedoraproject.org/pipermail/package-announce/2010-April/038367.html http://lists.fedoraproject.org/pipermail/package-announce/2010-April/038378.html http://lists.fedoraproject.org/pipermail/package-announce/2010-April/038406.html http://www.mandriva.com/security/advisories?name=MDVSA-2010:070 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7615 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9502 http://www.redhat.com/support/errata/RHSA-2010-0332.html http://www.redhat.com/support/errata/RHSA-2010-0333.html http://securitytracker.com/id?1023775 http://securitytracker.com/id?1023781 http://secunia.com/advisories/38566 http://secunia.com/advisories/39117 http://secunia.com/advisories/39136 http://secunia.com/advisories/39204 http://secunia.com/advisories/39240 http://secunia.com/advisories/39242 http://secunia.com/advisories/39243 http://secunia.com/advisories/39308 http://secunia.com/advisories/39397 SuSE Security Announcement: SUSE-SR:2010:013 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html http://ubuntu.com/usn/usn-921-1 http://www.vupen.com/english/advisories/2010/0748 http://www.vupen.com/english/advisories/2010/0764 http://www.vupen.com/english/advisories/2010/0765 http://www.vupen.com/english/advisories/2010/0781 http://www.vupen.com/english/advisories/2010/0790 http://www.vupen.com/english/advisories/2010/0849 XForce ISS Database: mozilla-browser-eng-code-exec(57389) https://exchange.xforce.ibmcloud.com/vulnerabilities/57389 Common Vulnerability Exposure (CVE) ID: CVE-2010-0175 Bugtraq: 20100402 ZDI-10-050: Mozilla Firefox nsTreeSelection EventListener Remote Code Execution Vulnerability (Google Search) http://www.securityfocus.com/archive/1/510542/100/0/threaded http://www.zerodayinitiative.com/advisories/ZDI-10-050 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7546 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9834 http://securitytracker.com/id?1023780 http://securitytracker.com/id?1023782 XForce ISS Database: firefox-nstreeselection-code-execution(57390) https://exchange.xforce.ibmcloud.com/vulnerabilities/57390 Common Vulnerability Exposure (CVE) ID: CVE-2010-0176 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11052 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7222 http://securitytracker.com/id?1023776 XForce ISS Database: firefox-nstreecontentview-code-exec(57392) https://exchange.xforce.ibmcloud.com/vulnerabilities/57392 Common Vulnerability Exposure (CVE) ID: CVE-2010-0177 Bugtraq: 20100402 ZDI-10-049: Mozilla Firefox PluginArray nsMimeType Dangling Pointer Remote Code Execution Vulnerability (Google Search) http://www.securityfocus.com/archive/1/510540/100/0/threaded http://www.zerodayinitiative.com/advisories/ZDI-10-049 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10833 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7622 XForce ISS Database: firefox-nspluginarray-code-execution(57393) https://exchange.xforce.ibmcloud.com/vulnerabilities/57393 Common Vulnerability Exposure (CVE) ID: CVE-2010-0178 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10460 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6975 XForce ISS Database: firefox-draganddrop-code-execution(57391) https://exchange.xforce.ibmcloud.com/vulnerabilities/57391 Common Vulnerability Exposure (CVE) ID: CVE-2010-0179 BugTraq ID: 39124 http://www.securityfocus.com/bid/39124 http://www.mandriva.com/security/advisories?name=MDVSA-2010:251 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6971 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9446 http://securitytracker.com/id?1023783 http://secunia.com/advisories/3924 http://secunia.com/advisories/42818 SuSE Security Announcement: SUSE-SA:2011:003 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00002.html http://www.vupen.com/english/advisories/2011/0030 XForce ISS Database: firefox-firebug-code-execution(57394) https://exchange.xforce.ibmcloud.com/vulnerabilities/57394
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.