Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-2488.NASL
HistoryJun 29, 2012 - 12:00 a.m.

Debian DSA-2488-1 : iceweasel - several vulnerabilities

2012-06-2900:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
16
JSON

Several vulnerabilities have been discovered in Iceweasel, a web browser based on Firefox. The included XULRunner library provides rendering services for several other applications included in Debian.

  • CVE-2012-1937 Mozilla developers discovered several memory corruption bugs, which may lead to the execution of arbitrary code.

  • CVE-2012-1940 Abhishek Arya discovered a use-after-free problem when working with column layout with absolute positioning in a container that changes size, which may lead to the execution of arbitrary code.

  • CVE-2012-1947 Abhishek Arya discovered a heap buffer overflow in utf16 to latin1 character set conversion, allowing to execute arbitrary code.

Note: We’d like to advise users of Iceweasel’s 3.5 branch in Debian stable to consider to upgrade to the Iceweasel 10.0 ESR (Extended Support Release) which is now available in Debian Backports. Although Debian will continue to support Iceweasel 3.5 in stable with security updates, this can only be done on a best effort base as upstream provides no such support anymore. On top of that, the 10.0 branch adds proactive security features to the browser.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-2488. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(59766);
  script_version("1.12");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2012-1937", "CVE-2012-1940", "CVE-2012-1947");
  script_xref(name:"DSA", value:"2488");

  script_name(english:"Debian DSA-2488-1 : iceweasel - several vulnerabilities");
  script_summary(english:"Checks dpkg output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Debian host is missing a security-related update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Several vulnerabilities have been discovered in Iceweasel, a web
browser based on Firefox. The included XULRunner library provides
rendering services for several other applications included in Debian.

  - CVE-2012-1937
    Mozilla developers discovered several memory corruption
    bugs, which may lead to the execution of arbitrary code.

  - CVE-2012-1940
    Abhishek Arya discovered a use-after-free problem when
    working with column layout with absolute positioning in
    a container that changes size, which may lead to the
    execution of arbitrary code.

  - CVE-2012-1947
    Abhishek Arya discovered a heap buffer overflow in utf16
    to latin1 character set conversion, allowing to execute
    arbitrary code.

Note: We'd like to advise users of Iceweasel's 3.5 branch in Debian
stable to consider to upgrade to the Iceweasel 10.0 ESR (Extended
Support Release) which is now available in Debian Backports. Although
Debian will continue to support Iceweasel 3.5 in stable with security
updates, this can only be done on a best effort base as upstream
provides no such support anymore. On top of that, the 10.0 branch adds
proactive security features to the browser."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2012-1937"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2012-1940"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2012-1947"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://packages.debian.org/source/squeeze/iceweasel"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.debian.org/security/2012/dsa-2488"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Upgrade the iceweasel packages.

For the stable distribution (squeeze), this problem has been fixed in
version 3.5.16-16."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:iceweasel");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:6.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2012/06/07");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/06/29");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"6.0", prefix:"iceweasel", reference:"3.5.16-16")) flag++;
if (deb_check(release:"6.0", prefix:"iceweasel-dbg", reference:"3.5.16-16")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
debiandebian_linuxiceweaselp-cpe:/a:debian:debian_linux:iceweasel
debiandebian_linux6.0cpe:/o:debian:debian_linux:6.0

Related

openvas 42
osv 3
nessus 35
debian 3
mozilla 2
prion 3
cve 3
ubuntucve 3
veracode 8
suse 3
oraclelinux 2
ubuntu 4
redhat 2
freebsd 1
centos 2
securityvulns 1
gentoo 1
openvas
openvas
Debian Security Advisory DSA 2489-1 (iceape)
2012-08-10 00:00:00
Debian Security Advisory DSA 2488-1 (iceweasel)
2012-08-10 00:00:00
Debian Security Advisory DSA 2488-1 (iceweasel)
2012-08-10 00:00:00
osv
osv
iceweasel - several vulnerabilities
2012-06-07 00:00:00
iceape - several vulnerabilities
2012-06-07 00:00:00
icedove - several
2012-06-24 00:00:00
nessus
nessus
Debian DSA-2489-1 : iceape - several vulnerabilities
2012-06-29 00:00:00
Debian DSA-2499-1 : icedove - several vulnerabilities
2012-06-29 00:00:00
Firefox < 10.0.5 Multiple Vulnerabilities (Mac OS X)
2012-06-07 00:00:00
debian
debian
[SECURITY] [DSA 2489-1] iceape security update
2012-06-07 20:59:25
[SECURITY] [DSA 2488-1] iceweasel security update
2012-06-07 20:59:22
[SECURITY] [DSA 2499-1] icedove security update
2012-06-24 11:34:12
mozilla
mozilla
Buffer overflow and use-after-free issues found using Address Sanitizer — Mozilla
2012-06-05 00:00:00
Miscellaneous memory safety hazards (rv:13.0/ rv:10.0.5) — Mozilla
2012-06-05 00:00:00
prion
prion
Design/Logic Flaw
2012-06-05 23:55:00
Memory corruption
2012-06-05 23:55:00
Heap overflow
2012-06-05 23:55:00
cve
cve
CVE-2012-1940
2012-06-05 23:55:00
CVE-2012-1937
2012-06-05 23:55:00
CVE-2012-1947
2012-06-05 23:55:00
ubuntucve
ubuntucve
CVE-2012-1940
2012-06-06 00:00:00
CVE-2012-1947
2012-06-06 00:00:00
CVE-2012-1937
2012-06-06 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-05-02 04:41:40
Arbitrary Code Execution
2019-05-02 04:41:39
Arbitrary Code Execution
2019-05-02 04:41:41
suse
suse
MozillaFirefox, MozillaThunderbird, mozilla-nss, seamonkey, xulrunner: June (important)
2012-06-19 12:08:31
Security update for Mozilla Firefox (important)
2012-06-15 22:08:23
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
oraclelinux
oraclelinux
thunderbird security update
2012-06-06 00:00:00
firefox security update
2012-06-05 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2012-06-27 00:00:00
Thunderbird vulnerabilities
2012-06-22 00:00:00
Firefox regressions
2012-06-20 00:00:00
redhat
redhat
(RHSA-2012:0715) Critical: thunderbird security update
2012-06-06 00:00:00
(RHSA-2012:0710) Critical: firefox security update
2012-06-05 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2012-06-05 00:00:00
centos
centos
thunderbird security update
2012-06-07 09:01:37
firefox, xulrunner security update
2012-06-06 13:06:53
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2012-06-13 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
JSON
Related for DEBIAN_DSA-2488.NASL
openvas42osv3nessus35debian3mozilla2prion3cve3ubuntucve3veracode8suse3oraclelinux2ubuntu4redhat2freebsd1centos2securityvulns1gentoo1