Debian Security Advisory DSA 1649-1 (iceweasel) Network Vulnerability

Summary

The remote host is missing an update to iceweasel announced via advisory DSA 1649-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201649-1

Insight

Several remote vulnerabilities have been discovered in the Iceweasel web browser, an unbranded version of the Firefox browser. For details, please visit the referenced security advisories. For the stable distribution (etch), these problems have been fixed in version 2.0.0.17-0etch1. Packages for hppa will be provided later. For the unstable distribution (sid), these problems have been fixed in version 3.0.3 of iceweasel and 1.9.0.3-1 of xulrunner. We recommend that you upgrade your iceweasel package.

Severity

Classification

CVE	CVE-2008-0016, CVE-2008-3835, CVE-2008-3836, CVE-2008-3837, CVE-2008-4058, CVE-2008-4059, CVE-2008-4060, CVE-2008-4061, CVE-2008-4062, CVE-2008-4065, CVE-2008-4066, CVE-2008-4067, CVE-2008-4068, CVE-2008-4069

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Debian Security Advisory DSA 054-1 (cron)
Debian Security Advisory DSA 033-1 (analog)
Debian Security Advisory DSA 1015-1 (sendmail)
Debian Security Advisory DSA 034-1 (ePerl)
Debian Security Advisory DSA 1038-1 (xzgv)

Take action and discover your vulnerabilities