Mozilla Firefox Browser Security Bypass Vulnerabilities - Win Network Vulnerability

Summary

The host is installed with Mozilla Firefox browser and is prone to secuirty bypass vulnerability.

Impact

Successful exploitation will allow attacker to bypass intended access restrictions. Impact Level: Application

Solution

Upgrade to Mozilla Firefox 4 Beta 8 or later, For updates refer to http://www.mozilla.com/en-US/firefox/all.html

Insight

The flaw is due to error in 'WebSockets' implementation, does not properly perform proxy upgrade negotiation, which has unspecified impact and remote attack vectors.

Affected

Firefox version 4.0 to 4.0 Beta 7 on Windows

References

https://wiki.mozilla.org/Platform/2010-12-07

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-4508

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Acrobat Multiple Vulnerabilities-01 Dec14 (Mac OS X)
Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Mac OX S)
Adobe AIR Multiple Vulnerabilities -01 Feb13 (Linux)
Adobe Flash Player Buffer Overflow Vulnerability - Apr14 (Linux)
Adobe Air Multiple Vulnerabilities - November12 (Mac OS X)

Take action and discover your vulnerabilities