English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 146377 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.54875
Category:Gentoo Local Security Checks
Title:Gentoo Security Advisory GLSA 200503-10 (Firefox)
Summary:The remote host is missing updates announced in;advisory GLSA 200503-10.
Description:Summary:
The remote host is missing updates announced in
advisory GLSA 200503-10.

Vulnerability Insight:
Mozilla Firefox is vulnerable to a local file deletion issue and to various
issues allowing to trick the user into trusting fake web sites or
interacting with privileged content.

Solution:
All Firefox users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=net-www/mozilla-firefox-1.0.1'

All Firefox binary users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose
'>=net-www/mozilla-firefox-bin-1.0.1'

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2004-1156
http://www.gentoo.org/security/en/glsa/glsa-200503-10.xml
http://www.gentoo.org/security/en/glsa/glsa-200503-30.xml
http://secunia.com/multiple_browsers_window_injection_vulnerability_test/
http://secunia.com/secunia_research/2004-13/advisory/
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100045
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10117
http://www.redhat.com/support/errata/RHSA-2005-176.html
http://www.redhat.com/support/errata/RHSA-2005-384.html
http://secunia.com/advisories/13129/
Common Vulnerability Exposure (CVE) ID: CVE-2005-0230
BugTraq ID: 12468
http://www.securityfocus.com/bid/12468
Bugtraq: 20050207 Firedragging [Firefox 1.0] (Google Search)
http://marc.info/?l=bugtraq&m=110780995232064&w=2
http://www.mikx.de/firedragging/
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100033
http://secunia.com/advisories/19823
SuSE Security Announcement: SUSE-SA:2006:022 (Google Search)
http://www.novell.com/linux/security/advisories/2006_04_25.html
Common Vulnerability Exposure (CVE) ID: CVE-2005-0231
Bugtraq: 20050207 Firetabbing [Firefox 1.0] (Google Search)
http://marc.info/?l=bugtraq&m=110781134617144&w=2
http://www.mikx.de/firetabbing/
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100032
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10079
SuSE Security Announcement: SUSE-SA:2005:016 (Google Search)
http://www.novell.com/linux/security/advisories/2005_16_mozilla_firefox.html
XForce ISS Database: mozilla-firefox-tab-gain-access(19264)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19264
Common Vulnerability Exposure (CVE) ID: CVE-2005-0232
Bugtraq: 20050207 Fireflashing [Firefox 1.0] (Google Search)
http://marc.info/?l=bugtraq&m=110781055630856&w=2
http://www.mikx.de/fireflashing/
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10967
http://www.redhat.com/support/errata/RHSA-2005-323.html
XForce ISS Database: mozilla-firefox-aboutconfig-modify(19266)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19266
Common Vulnerability Exposure (CVE) ID: CVE-2005-0233
12461
http://www.securityfocus.com/bid/12461
20050206 state of homograph attacks
http://lists.grok.org.uk/pipermail/full-disclosure/2005-February/031459.html
20050208 International Domain Name [IDN] support in modern browsers allows attackers to spoof domain name URLs + SSL certs.
http://marc.info/?l=bugtraq&m=110782704923280&w=2
GLSA-200503-10
GLSA-200503-30
RHSA-2005:176
RHSA-2005:384
SUSE-SA:2005:016
http://www.mozilla.org/security/announce/mfsa2005-29.html
http://www.shmoo.com/idn
http://www.shmoo.com/idn/homograph.txt
multiple-browsers-idn-spoof(19236)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19236
oval:org.mitre.oval:def:100029
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100029
oval:org.mitre.oval:def:11229
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11229
Common Vulnerability Exposure (CVE) ID: CVE-2005-0255
BugTraq ID: 12659
http://www.securityfocus.com/bid/12659
http://www.idefense.com/application/poi/display?id=200&type=vulnerabilities
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100040
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9111
http://www.redhat.com/support/errata/RHSA-2005-277.html
http://www.redhat.com/support/errata/RHSA-2005-337.html
Common Vulnerability Exposure (CVE) ID: CVE-2005-0527
Bugtraq: 20050225 Firescrolling [Firefox 1.0] (Google Search)
http://marc.info/?l=bugtraq&m=110935267500395&w=2
http://www.mikx.de/?p=11
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100031
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11772
http://securitytracker.com/id?1013301
Common Vulnerability Exposure (CVE) ID: CVE-2005-0578
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10954
Common Vulnerability Exposure (CVE) ID: CVE-2005-0584
http://www.mozilla.org/security/announce/mfsa2005-24.html
https://bugzilla.mozilla.org/show_bug.cgi?id=277574
oval:org.mitre.oval:def:100034
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100034
oval:org.mitre.oval:def:11191
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11191
Common Vulnerability Exposure (CVE) ID: CVE-2005-0585
13599
http://secunia.com/advisories/13599
http://secunia.com/secunia_research/2004-15/advisory/
http://www.mozilla.org/security/announce/mfsa2005-23.html
oval:org.mitre.oval:def:100035
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100035
oval:org.mitre.oval:def:9924
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9924
Common Vulnerability Exposure (CVE) ID: CVE-2005-0586
12659
13258
http://secunia.com/advisories/13258
http://www.mozilla.org/security/announce/mfsa2005-22.html
oval:org.mitre.oval:def:100036
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100036
oval:org.mitre.oval:def:11152
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11152
Common Vulnerability Exposure (CVE) ID: CVE-2005-0588
http://www.mozilla.org/security/announce/mfsa2005-20.html
https://bugzilla.mozilla.org/show_bug.cgi?id=271209
oval:org.mitre.oval:def:100038
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100038
oval:org.mitre.oval:def:10682
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10682
Common Vulnerability Exposure (CVE) ID: CVE-2005-0589
http://www.mozilla.org/security/announce/mfsa2005-19.html
https://bugzilla.mozilla.org/show_bug.cgi?id=270697
oval:org.mitre.oval:def:100039
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100039
oval:org.mitre.oval:def:10825
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10825
Common Vulnerability Exposure (CVE) ID: CVE-2005-0590
19823
SUSE-SA:2006:022
http://www.mozilla.org/security/announce/mfsa2005-17.html
https://bugzilla.mozilla.org/show_bug.cgi?id=268059
oval:org.mitre.oval:def:100041
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100041
oval:org.mitre.oval:def:10010
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10010
Common Vulnerability Exposure (CVE) ID: CVE-2005-0591
12234
http://www.securityfocus.com/bid/12234
13786
http://secunia.com/advisories/13786
20050111 Firespoofing [Firefox 1.0]
http://marc.info/?l=bugtraq&m=110547286002188&w=2
http://www.mikx.de/firespoofing/
http://www.mikx.de/index.php?p=7
http://www.mozilla.org/security/announce/mfsa2005-16.html
https://bugzilla.mozilla.org/show_bug.cgi?id=260560
oval:org.mitre.oval:def:100042
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100042
oval:org.mitre.oval:def:10039
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10039
web-browser-modal-spoofing(18864)
https://exchange.xforce.ibmcloud.com/vulnerabilities/18864
Common Vulnerability Exposure (CVE) ID: CVE-2005-0592
http://www.mozilla.org/security/announce/mfsa2005-15.html
https://bugzilla.mozilla.org/show_bug.cgi?id=241440
oval:org.mitre.oval:def:100043
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100043
oval:org.mitre.oval:def:10606
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10606
Common Vulnerability Exposure (CVE) ID: CVE-2005-0593
http://www.mozilla.org/security/announce/mfsa2005-14.html
https://bugzilla.mozilla.org/show_bug.cgi?id=258048
https://bugzilla.mozilla.org/show_bug.cgi?id=268483
https://bugzilla.mozilla.org/show_bug.cgi?id=276720
https://bugzilla.mozilla.org/show_bug.cgi?id=277564
oval:org.mitre.oval:def:100044
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100044
oval:org.mitre.oval:def:9533
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9533
CopyrightCopyright (C) 2008 E-Soft Inc.

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.