|
Vulnerability Assessment & Network Security Forums
|
|
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.
Home >> Browse Vulnerability Assessment Database >>
SuSE Local Security Checks >> SUSE-SA:2006:068: MozillaFirefox,MozillaThunderbird,seamonkey
Vulnerability Assessment Details
SUSE-SA:2006:068: MozillaFirefox,MozillaThunderbird,seamonkey
|
Vulnerability Assessment Summary
Check for the version of the MozillaFirefox,MozillaThunderbird,seamonkey package
Detailed Explanation for this Vulnerability Assessment
The remote host is missing the patch for the advisory SUSE-SA:2006:068 (MozillaFirefox,MozillaThunderbird,seamonkey).
MozillaFirefox has been updated to the security update release
1.5.0.8, MozillaThunderbird has been updated to 1.5.0.8, and the
Mozilla Seamonkey suite has been updated to 1.0.6 to fix the following
security issues.
Full details of the security problems can be found on:
http://www.mozilla.org/projects/security/known-vulnerabilities.html
MFSA 2006-65: This issue is split into 3 sub-entries, for ongoing
stability improvements in the Mozilla browsers:
CVE-2006-5464: Layout engine flaws were fixed.
CVE-2006-5747: A xml.prototype.hasOwnProperty flaw was fixed.
CVE-2006-5748: Fixes were applied to the Javascript engine.
MFSA 2006-66/CVE-2006-5462: MFSA 2006-60 reported that RSA digital
signatures with a low exponent (typically 3) could be forged. Firefox
and Thunderbird 1.5.0.7, which incorporated NSS version 3.10.2,
were incompletely patched and remained vulnerable to a variant of
this attack.
MFSA 2006-67/CVE-2006-5463: shutdown demonstrated that it was possible
to modify a Script object while it was executing, potentially leading
to the execution of arbitrary JavaScript bytecode.
Note that Mozilla Suite updates for products before SUSE Linux 10.1 / SLES 10
are not available yet due to backporting problems.
Solution : http://www.suse.de/security/http://www.novell.com/linux/security/advisories/2006_68_mozilla.html
Network Security Threat Level: High
Networks Security ID:
Vulnerability Assessment Copyright: This script is Copyright (C) 2007 Tenable Network Security
|
Cables, Connectors |
Lot of 50 Major Brand 4 GB DDR3L-1600 PC3L-12800U DIMM Desktop RAM Memory $100.00
A-Tech 8GB DDR3 1600 PC3-12800 Laptop SODIMM 204-Pin Memory RAM PC3L DDR3L 1x 8G $13.99
HyperX FURY DDR3 8GB 16GB 32GB 1600 MHz PC3-12800 Desktop RAM Memory DIMM 240pin $15.90
Crucial DDR3L 16GB 1600 2x 8GB PC3-12800 Laptop SODIMM Memory RAM PC3 16G DDR3 $21.50
Team T-FORCE VULCAN Z 16GB (2 x 8GB) 288-Pin PC RAM DDR4 3200 (PC4 25600) XMP $34.99
Samsung 8GB 2Rx8 DDR3 PC3L-12800S LAPTOP SODIMM RAM MEMORY $8.00
Team T-FORCE VULCAN Z 16GB (2 x 8GB) 288-Pin PC RAM DDR4 3200 (PC4 25600) Intel $33.99
Samsung 16GB (4x4GB) 1Rx8 PC3-12800U 1600Mhz DDR3 RAM Memory M378B5273DH0-CK0 $14.00
256GB Kit (8 x 32GB) PC4-17000 LRDIMM DELL POWEREDGE R730xd R730 R630 Memory RAM $303.92
HyperX FURY DDR4 16GB 32GB 64GB 2666MHz PC4-21300 Desktop RAM Memory DIMM 288Pin $119.80
|
|
|
No Discussions have been posted on this vulnerability.
|
|
|
|