The host is installed with Mozilla Firefox and is prone to multiple vulnerabilities.

Successful exploitation allows remote attackers to disclose potentially sensitive information, conduct cross-site scripting attacks, and compromise a user's system. Impact Level: System/Application

Upgrade to Firefox version 5.0 or later http://www.mozilla.com/en-US/firefox/all.html

- An error within WebGL allows remote attackers to obtain screenshots of the windows of arbitrary desktop applications via vectors involving an SVG filter, an IFRAME element, and uninitialized data in graphics memory. - An error within WebGL when reading certain data can be exploited to disclose GPU memory contents used by other processes. - An error within WebGL can be exploited to execute arbitrary code or cause a denial of service. - Input passed via HTML-encoded entities is not properly decoded before being displayed inside SVG elements, which allows remote attackers to inject arbitrary web script or HTML.

Mozilla Firefox versions 4.x through 4.0.1

• http://blog.mozilla.com/security/2011/06/16/webgl-graphics-memory-stealing-issue/
• http://secunia.com/advisories/44972/
• http://www.contextis.com/resources/blog/webgl2/

---

Updated on 2015-03-25