Gentoo Security Advisory GLSA 200608-03 (Firefox) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 200608-03.

Solution

All Mozilla Firefox users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=www-client/mozilla-firefox-1.5.0.5' Users of the binary package should upgrade as well: # emerge --sync # emerge --ask --oneshot --verbose '>=www-client/mozilla-firefox-bin-1.5.0.5' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200608-03 http://bugs.gentoo.org/show_bug.cgi?id=141842

Insight

The Mozilla Foundation has reported numerous security vulnerabilities related to Mozilla Firefox.

Severity

Classification

CVE	CVE-2006-3113, CVE-2006-3677, CVE-2006-3801, CVE-2006-3802, CVE-2006-3803, CVE-2006-3805, CVE-2006-3806, CVE-2006-3807, CVE-2006-3808, CVE-2006-3809, CVE-2006-3810, CVE-2006-3811, CVE-2006-3812

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Gentoo Security Advisory GLSA 200408-15 (tomcat)
Gentoo Security Advisory GLSA 200406-17 (IPsec-Tools)
Gentoo Security Advisory GLSA 200405-25 (tla)
Gentoo Security Advisory GLSA 200406-16 (Apache)
Gentoo Security Advisory GLSA 200403-14 (app-admin/monit)

Take action and discover your vulnerabilities