Summary
The host is installed with Firefox Browser and is prone to multiple vulnerabilities.
Impact
Successful exploitation will allow attacker to conduct spoofing attacks, bypass certain security restrictions, manipulate certain data, disclose sensitive information, or compromise a user's system.
Impact Level: Application/System
Solution
Upgrade to Firefox version 3.5.6,
http://www.mozilla.com/en-US/firefox/all.html
Insight
For more information about vulnerabilities on Firefox, refer the links mentioned in references.
Affected
Firefox version prior to 3.5.6 on Windows.
References
- http://secunia.com/advisories/37699
- http://www.mozilla.org/security/announce/2009/mfsa2009-65.html
- http://www.mozilla.org/security/announce/2009/mfsa2009-66.html
- http://www.mozilla.org/security/announce/2009/mfsa2009-67.html
- http://www.mozilla.org/security/announce/2009/mfsa2009-68.html
- http://www.mozilla.org/security/announce/2009/mfsa2009-69.html
- http://www.mozilla.org/security/announce/2009/mfsa2009-70.html
- http://www.mozilla.org/security/announce/2009/mfsa2009-71.html
- http://www.vupen.com/english/advisories/2009/3547
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2009-3388, CVE-2009-3389, CVE-2009-3979, CVE-2009-3980, CVE-2009-3982, CVE-2009-3983, CVE-2009-3984, CVE-2009-3985, CVE-2009-3986, CVE-2009-3987 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Captivate Insecure Library Loading Vulnerability
- Adobe Acrobat Remote Code Execution Vulnerability(Win)
- Adobe AIR Multiple Vulnerabilities(APSB14-24)-(Windows)
- Adobe Flash Player 'SWF' File Multiple Code Execution Vulnerability - Mac OS X
- Adobe Acrobat Multiple Unspecified Vulnerabilities -01 Feb13 (Windows)