The remote host is missing an update to the system as announced in the referenced advisory.

Update your system with the appropriate patches or software upgrades. http://www.cipher.org.uk/index.php?p=advisories/Certificate_Spoofing_Mozilla_FireFox_25-07-2004.advisory http://secunia.com/advisories/12160 http://bugzilla.mozilla.org/show_bug.cgi?id=253121 http://www.osvdb.org/8238 http://www.securityfocus.com/archive/1/369953 http://www.vuxml.org/freebsd/abe47a5a-e23c-11d8-9b0a-000347a4fa7d.html

The following packages are affected: firefox linux-mozilla linux-mozilla-devel mozilla mozilla-gtk1 CVE-2004-0763 Mozilla Firefox 0.9.1 and 0.9.2 allows remote web sites to spoof certificates of trusted web sites via redirects and Javascript that uses the 'onunload' method.