Gentoo Security Advisory GLSA 200711-14 (firefox Seamonkey Xulrunner) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 200711-14.

Solution

All Mozilla Firefox users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=www-client/mozilla-firefox-2.0.0.9' All Mozilla Firefox binary users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=www-client/mozilla-firefox-bin-2.0.0.9' All SeaMonkey users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=www-client/seamonkey-1.1.6' All SeaMonkey binary users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=www-client/seamonkey-bin-1.1.6' All XULRunner users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-libs/xulrunner-1.8.1.9' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200711-14 http://bugs.gentoo.org/show_bug.cgi?id=196480

Insight

Multiple vulnerabilities have been discovered in Mozilla Firefox, SeaMonkey and XULRunner, potentially allowing to compromise a user's system.

Severity

Classification

CVE CVE-2007-1095, CVE-2007-2292, CVE-2007-5334, CVE-2007-5335, CVE-2007-5337, CVE-2007-5338, CVE-2007-5339, CVE-2007-5340

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Gentoo Security Advisory GLSA 200711-14 (firefox seamonkey xulrunner)

Take action and discover your vulnerabilities