Summary
The remote host is missing updates announced in
advisory GLSA 200503-30.
Solution
All Mozilla Suite users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=www-client/mozilla-1.7.6'
All Mozilla Suite binary users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=www-client/mozilla-bin-1.7.6'
http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200503-30 http://bugs.gentoo.org/show_bug.cgi?id=84074
http://www.mozilla.org/projects/security/known-vulnerabilities.html
Insight
The Mozilla Suite is vulnerable to multiple issues ranging from the remote execution of arbitrary code to various issues allowing to trick the user into trusting fake web sites or interacting with privileged content.
Severity
Classification
-
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities