Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> SuSE Local Security Checks >> SUSE-SA:2005:045: mozilla,MozillaFirefox,epiphany,galeon


Vulnerability Assessment Details

SUSE-SA:2005:045: mozilla,MozillaFirefox,epiphany,galeon

Vulnerability Assessment Summary
Check for the version of the mozilla,MozillaFirefox,epiphany,galeon package

Detailed Explanation for this Vulnerability Assessment

The remote host is missing the patch for the advisory SUSE-SA:2005:045 (mozilla,MozillaFirefox,epiphany,galeon).


Various security vulnerabilities in the mozilla browser suite and
the Mozilla Firefox browser have been reported and fixed upstream.

The Mozilla suite browser has been updated to a security fix level
of Mozilla 1.7.11, the Mozilla Firefox browser has been updated to
a fix level of Firefox 1.0.6.


Security relevant bugs that are fixed include (but are not limited to):

MFSA 2005-56 Code execution through shared function objects
MFSA 2005-55 XHTML node spoofing
MFSA 2005-54 Javascript prompt origin spoofing
MFSA 2005-52 Same origin violation: frame calling top.focus()
MFSA 2005-51 The return of frame-injection spoofing
MFSA 2005-50 Possibly exploitable crash in InstallVersion.compareTo()
MFSA 2005-49 Stealing of sensitive information via _search and the Firefox sidebar
MFSA 2005-48 Same-origin violation with InstallTrigger callback
MFSA 2005-47 'Set as wallpaper' javascript: privilege escalation
MFSA 2005-46 XBL scripts ran even when Javascript disabled
MFSA 2005-45 Content-generated event vulnerabilities


This update also upgrades the version of the Mozilla suite for the
following products:

* SUSE Linux Desktop 1.0:
The original Mozilla 1.4 branch browser is upgraded to the Mozilla
1.7 branch version.

We were not able to port the galeon web browser included in SUSE
Linux Desktop 1.0 to support Mozilla 1.7 in time, so we no longer
support it.

The galeon package on SUSE Linux Desktop 1.0 is removed by this update.

* SUSE Linux Enterprise Server 8:
The original Mozilla 1.4 branch browser is upgraded to the Mozilla
1.7 branch version.

* SUSE Linux Enterprise Server 9:
The Mozilla version 1.6 shipped with GA of the SUSE Linux Enterprise
Server 9 was replaced by the Mozilla 1.7 branch version in Service
Pack 2.

* SUSE Linux 8.2, 9.0, 9.1:
The Mozilla version 1.4 and 1.6 contained in the SUSE Linux versions
8.2 up to 9.1 was replaced by the Mozilla 1.7 branch version.

We were not able to port the galeon and the epiphany web browsers
included in SUSE Linux 9.0 up to 9.1 to support Mozilla 1.7 in time,
so we will no longer support it.

The galeon and epiphany packages on SUSE Linux 9.0 and 9.1 are removed
by this update.


Solution : http://www.suse.de/security/advisories/2005_45_mozilla.html
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2005 Tenable Network Security

Cables, Connectors


Cisco ASA 5506-X V07  8-Port Network Security Firewall Appliance + AC Adapter picture

Cisco ASA 5506-X V07 8-Port Network Security Firewall Appliance + AC Adapter

$67.77



Fortinet Fortigate FG-61E Firewall Network Security Appliance ATP Bundle 1 years picture

Fortinet Fortigate FG-61E Firewall Network Security Appliance ATP Bundle 1 years

$269.99



Fortinet Fortiwifi 60D FG-60D Security Appliance Firewall / VPN w/ AC Adapter picture

Fortinet Fortiwifi 60D FG-60D Security Appliance Firewall / VPN w/ AC Adapter

$34.97



Palo Alto PA-220 Next-Gen Firewall 520-000309-00J w/ Power adapter picture

Palo Alto PA-220 Next-Gen Firewall 520-000309-00J w/ Power adapter

$69.98



Fortinet FortiGate 90E Network Security Firewall FG-90E picture

Fortinet FortiGate 90E Network Security Firewall FG-90E

$29.99



Cisco Meraki MX64-HW Router/Security Firewall 4-Port Cloud Managed picture

Cisco Meraki MX64-HW Router/Security Firewall 4-Port Cloud Managed

$19.88



Cisco ASA 5506-X  Network Security Firewall Appliance picture

Cisco ASA 5506-X Network Security Firewall Appliance

$27.38



Cisco ASA 5505  Fast Ethernet Firewall Security Appliance picture

Cisco ASA 5505 Fast Ethernet Firewall Security Appliance

$12.99



Firewall pfSense 2.7.2 Release 8GB Memory - Dual NIC 1 GB - 256GB SSD picture

Firewall pfSense 2.7.2 Release 8GB Memory - Dual NIC 1 GB - 256GB SSD

$97.77



Pulse Secure PSA3000 Security Firewall Appliance SSL VPN picture

Pulse Secure PSA3000 Security Firewall Appliance SSL VPN

$64.99



Discussions

No Discussions have been posted on this vulnerability.