ID de Prueba:	1.3.6.1.4.1.25623.1.0.66927
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Security Advisory MDVSA-2010:042 (firefox)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to firefox announced via advisory MDVSA-2010:042. Security issues were identified and fixed in firefox 3.0.x and 3.5.x. For details, please visit the referenced securitys advisories. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. Additionally, some packages which require so, have been rebuilt and are being provided as updates. Affected: 2008.0, 2009.1, 2010.0, Enterprise Server 5.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2010:042 http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.18 http://www.mozilla.org/security/known-vulnerabilities/firefox35.html#firefox3.5.8 Risk factor : Critical CVSS Score: 10.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0159 Debian Security Information: DSA-1999 (Google Search) http://www.debian.org/security/2010/dsa-1999 http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035426.html http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035346.html http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035367.html http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036097.html http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036132.html http://www.mandriva.com/security/advisories?name=MDVSA-2010:042 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8485 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9590 http://www.redhat.com/support/errata/RHSA-2010-0112.html http://www.redhat.com/support/errata/RHSA-2010-0113.html http://www.redhat.com/support/errata/RHSA-2010-0153.html http://www.redhat.com/support/errata/RHSA-2010-0154.html http://secunia.com/advisories/37242 http://secunia.com/advisories/38770 http://secunia.com/advisories/38772 http://secunia.com/advisories/38847 SuSE Security Announcement: SUSE-SA:2010:015 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00001.html http://www.ubuntu.com/usn/USN-895-1 http://www.ubuntu.com/usn/USN-896-1 http://www.vupen.com/english/advisories/2010/0405 http://www.vupen.com/english/advisories/2010/0650 XForce ISS Database: mozilla-browsereng-code-execution(56359) https://exchange.xforce.ibmcloud.com/vulnerabilities/56359 Common Vulnerability Exposure (CVE) ID: CVE-2010-0160 Bugtraq: 20100402 ZDI-10-046: Mozilla Firefox Web Worker Array Remote Code Execution Vulnerability (Google Search) http://www.securityfocus.com/archive/1/510533/100/0/threaded http://www.zerodayinitiative.com/advisories/ZDI-10-046 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11166 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8465 XForce ISS Database: mozilla-webworkers-code-execution(56360) https://exchange.xforce.ibmcloud.com/vulnerabilities/56360 Common Vulnerability Exposure (CVE) ID: CVE-2009-1571 Bugtraq: 20100218 Secunia Research: Mozilla Firefox Memory Corruption Vulnerability (Google Search) http://www.securityfocus.com/archive/1/509585/100/0/threaded http://www.mandriva.com/security/advisories?name=MDVSA-2010:051 http://secunia.com/secunia_research/2009-45/ https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11227 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8615 XForce ISS Database: mozilla-htmlparser-code-exec(56361) https://exchange.xforce.ibmcloud.com/vulnerabilities/56361 Common Vulnerability Exposure (CVE) ID: CVE-2009-3988 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8355 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9384 XForce ISS Database: mozilla-showmodaldialog-xss(56362) https://exchange.xforce.ibmcloud.com/vulnerabilities/56362 Common Vulnerability Exposure (CVE) ID: CVE-2010-0162 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10697 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8631 XForce ISS Database: mozilla-svg-xss(56363) https://exchange.xforce.ibmcloud.com/vulnerabilities/56363
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.