Summary
The host is installed with Firefox Browser, which is prone to multiple vulnerabilities.
Impact
Successful exploitation could result in remote arbitrary JavaScript code execution, spoofing attacks, sensitive information disclosure, and can cause denial of service.
Impact Level: System/Application
Solution
Upgrade to Firefox version 3.0.11
http://www.mozilla.com/en-US/firefox/all-older.html
Insight
Multiple flaws are reported in Mozilla Firefoz. For more information refer to the reference links.
Affected
Firefox version prior to 3.0.11 on Windows
References
- http://research.microsoft.com/apps/pubs/default.aspx?id=79323
- http://research.microsoft.com/pubs/79323/pbp-final-with-update.pdf
- http://www.mozilla.org/security/announce/2009/mfsa2009-24.html
- http://www.mozilla.org/security/announce/2009/mfsa2009-25.html
- http://www.mozilla.org/security/announce/2009/mfsa2009-26.html
- http://www.mozilla.org/security/announce/2009/mfsa2009-27.html
- http://www.mozilla.org/security/announce/2009/mfsa2009-28.html
- http://www.mozilla.org/security/announce/2009/mfsa2009-29.html
- http://www.mozilla.org/security/announce/2009/mfsa2009-30.html
- http://www.mozilla.org/security/announce/2009/mfsa2009-31.html
- http://www.mozilla.org/security/announce/2009/mfsa2009-32.html
- http://www.vupen.com/english/advisories/2009/1572
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2009-1392, CVE-2009-1832, CVE-2009-1833, CVE-2009-1834, CVE-2009-1835, CVE-2009-1836, CVE-2009-1837, CVE-2009-1838, CVE-2009-1839, CVE-2009-1840, CVE-2009-1841, CVE-2009-2061, CVE-2009-2065 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities