ID de Prueba:	1.3.6.1.4.1.25623.1.0.122407
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2009-1674)
Resumen:	The remote host is missing an update for the 'firefox, xulrunner' package(s) announced via the ELSA-2009-1674 advisory.
Descripción:	Summary: The remote host is missing an update for the 'firefox, xulrunner' package(s) announced via the ELSA-2009-1674 advisory. Vulnerability Insight: firefox: [3.0.16-1.0.1.el5_4] - Update firstrun and homepage URLs in specfile - Added patch oracle-firefox-branding.patch - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html and removed the corresponding Red Hat ones [3.0.16-1] - Update to 3.0.16 xulrunner: [1.9.0.16-2.0.1.el5_4] - Added xulrunner-oracle-default-prefs.js and removed the corresponding RedHat one. [1.9.0.16-2] - Rebuild due to Mozilla's respin [1.9.0.16-1] - Update to 1.9.0.16 Affected Software/OS: 'firefox, xulrunner' package(s) on Oracle Linux 4, Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-3979 BugTraq ID: 37349 http://www.securityfocus.com/bid/37349 BugTraq ID: 37361 http://www.securityfocus.com/bid/37361 Debian Security Information: DSA-1956 (Google Search) http://www.debian.org/security/2009/dsa-1956 https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00995.html https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01034.html https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01041.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10956 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8487 RedHat Security Advisories: RHSA-2009:1673 https://rhn.redhat.com/errata/RHSA-2009-1673.html RedHat Security Advisories: RHSA-2009:1674 https://rhn.redhat.com/errata/RHSA-2009-1674.html http://www.redhat.com/support/errata/RHSA-2010-0153.html http://www.redhat.com/support/errata/RHSA-2010-0154.html http://securitytracker.com/id?1023333 http://securitytracker.com/id?1023334 http://secunia.com/advisories/37699 http://secunia.com/advisories/37703 http://secunia.com/advisories/37704 http://secunia.com/advisories/37785 http://secunia.com/advisories/37813 http://secunia.com/advisories/37856 http://secunia.com/advisories/37881 SuSE Security Announcement: SUSE-SA:2009:063 (Google Search) http://www.novell.com/linux/security/advisories/2009_63_firefox.html http://www.ubuntu.com/usn/USN-873-1 http://www.ubuntu.com/usn/USN-874-1 http://www.vupen.com/english/advisories/2009/3547 http://www.vupen.com/english/advisories/2010/0650 XForce ISS Database: mozilla-seamonkey-browser-code-exec(54799) https://exchange.xforce.ibmcloud.com/vulnerabilities/54799 Common Vulnerability Exposure (CVE) ID: CVE-2009-3981 BugTraq ID: 37363 http://www.securityfocus.com/bid/37363 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8523 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8584 XForce ISS Database: firefox-browser-engine-code-exec(54801) https://exchange.xforce.ibmcloud.com/vulnerabilities/54801 Common Vulnerability Exposure (CVE) ID: CVE-2009-3983 BugTraq ID: 37366 http://www.securityfocus.com/bid/37366 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10047 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8240 http://securitytracker.com/id?1023340 http://securitytracker.com/id?1023341 http://secunia.com/advisories/38977 http://secunia.com/advisories/39001 SuSE Security Announcement: SUSE-SR:2010:013 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html http://www.ubuntu.com/usn/USN-915-1 http://www.vupen.com/english/advisories/2010/0648 XForce ISS Database: firefox-ntlm-reflection(54807) https://exchange.xforce.ibmcloud.com/vulnerabilities/54807 Common Vulnerability Exposure (CVE) ID: CVE-2009-3984 BugTraq ID: 37367 http://www.securityfocus.com/bid/37367 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8379 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9791 http://securitytracker.com/id?1023342 http://securitytracker.com/id?1023343 XForce ISS Database: firefox-documentlocation-ssl-spoofing(54806) https://exchange.xforce.ibmcloud.com/vulnerabilities/54806 Common Vulnerability Exposure (CVE) ID: CVE-2009-3985 BugTraq ID: 37370 http://www.securityfocus.com/bid/37370 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8480 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9911 XForce ISS Database: firefox-documentlocation-spoofing(54808) https://exchange.xforce.ibmcloud.com/vulnerabilities/54808 Common Vulnerability Exposure (CVE) ID: CVE-2009-3986 BugTraq ID: 37365 http://www.securityfocus.com/bid/37365 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11568 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8489 http://securitytracker.com/id?1023344 http://securitytracker.com/id?1023345 XForce ISS Database: firefox-windowopener-code-execution(54803) https://exchange.xforce.ibmcloud.com/vulnerabilities/54803
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.