Summary
The host is installed with Mozilla Firefox browser and is prone to XSL File Parsing Vulnerability.
Impact
Successful exploitation will let the attacker cause remote code execution through a specially crafted malicious XSL file or can cause application termination at runtime.
Impact Level: System/Application
Solution
Upgrade to Firefox version 3.0.8
http://www.mozilla.com/en-US/firefox/firefox.html
Insight
This flaw is due to improper handling of errors encountered when transforming an XML document which can be exploited to cause memory corrpution through a specially crafted XSLT code.
Affected
Firefox version 3.0 to 3.0.7 on Windows.
References
Severity
Classification
-
CVE CVE-2009-1169 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities