Mozilla Firefox Browser Security Bypass Vulnerabilities - Win Network Vulnerability

Summary

The host is installed with Mozilla Firefox browser and is prone to secuirty bypass vulnerability.

Impact

Successful exploitation will allow attacker to bypass intended access restrictions. Impact Level: Application

Solution

Upgrade to Mozilla Firefox 4 Beta 8 or later, For updates refer to http://www.mozilla.com/en-US/firefox/all.html

Insight

The flaw is due to error in 'WebSockets' implementation, does not properly perform proxy upgrade negotiation, which has unspecified impact and remote attack vectors.

Affected

Firefox version 4.0 to 4.0 Beta 7 on Windows

References

https://wiki.mozilla.org/Platform/2010-12-07

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-4508

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Windows)
Adobe Acrobat Multiple Unspecified Vulnerabilities -01 Feb13 (Mac OS X)
Adobe Acrobat and Reader Multiple Vulnerabilities -July10 (Windows)
Adobe Air Multiple Vulnerabilities - November12 (Windows)
Adobe Acrobat Multiple Unspecified Vulnerabilities-01 Sep13 (Windows)

Take action and discover your vulnerabilities