Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20090909_FIREFOX_ON_SL4_X.NASL
HistoryAug 01, 2012 - 12:00 a.m.

Scientific Linux Security Update : firefox on SL4.x, SL5.x i386/x86_64

2012-08-0100:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
20
JSON

CVE-2009-2654 firefox: URL bar spoofing vulnerability

CVE-2009-3070 Firefox 3.5 3.0.14 browser engine crashes

CVE-2009-3071 Firefox 3.5.2 3.0.14 browser engine crashes

CVE-2009-3072 Firefox 3.5.3 3.0.14 browser engine crashes

CVE-2009-3074 Firefox 3.5 3.0.14 JavaScript engine crashes

CVE-2009-3075 Firefox 3.5.2 3.0.14 JavaScript engine crashes

CVE-2009-3076 Firefox 3.0.14 Insufficient warning for PKCS11 module installation and removal

CVE-2009-3077 Firefox 3.5.3 3.0.14 TreeColumns dangling pointer vulnerability

CVE-2009-3078 Firefox 3.5.3 3.0.14 Location bar spoofing via tall line-height Unicode characters

CVE-2009-3079 Firefox 3.5.3 3.0.14 Chrome privilege escalation with FeedWriter

Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2009-3070, CVE-2009-3071, CVE-2009-3072, CVE-2009-3074,

CVE-2009-3075)

A use-after-free flaw was found in Firefox. An attacker could use this flaw to crash Firefox or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2009-3077)

A flaw was found in the way Firefox handles malformed JavaScript. A website with an object containing malicious JavaScript could execute that JavaScript with the privileges of the user running Firefox.
(CVE-2009-3079)

Descriptions in the dialogs when adding and removing PKCS #11 modules were not informative. An attacker able to trick a user into installing a malicious PKCS #11 module could use this flaw to install their own Certificate Authority certificates on a user’s machine, making it possible to trick the user into believing they are viewing a trusted site or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2009-3076)

A flaw was found in the way Firefox displays the address bar when window.open() is called in a certain way. An attacker could use this flaw to conceal a malicious URL, possibly tricking a user into believing they are viewing a trusted site. (CVE-2009-2654)

A flaw was found in the way Firefox displays certain Unicode characters. An attacker could use this flaw to conceal a malicious URL, possibly tricking a user into believing they are viewing a trusted site. (CVE-2009-3078)

For technical details regarding these flaws, refer to the Mozilla security advisories for Firefox 3.0.14. You can find a link to the Mozilla advisories in the References section of this errata.

After installing the update, Firefox must be restarted for the changes to take effect.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(60664);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2009-2654", "CVE-2009-3070", "CVE-2009-3071", "CVE-2009-3072", "CVE-2009-3074", "CVE-2009-3075", "CVE-2009-3076", "CVE-2009-3077", "CVE-2009-3078", "CVE-2009-3079");

  script_name(english:"Scientific Linux Security Update : firefox on SL4.x, SL5.x i386/x86_64");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Scientific Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"CVE-2009-2654 firefox: URL bar spoofing vulnerability

CVE-2009-3070 Firefox 3.5 3.0.14 browser engine crashes

CVE-2009-3071 Firefox 3.5.2 3.0.14 browser engine crashes

CVE-2009-3072 Firefox 3.5.3 3.0.14 browser engine crashes

CVE-2009-3074 Firefox 3.5 3.0.14 JavaScript engine crashes

CVE-2009-3075 Firefox 3.5.2 3.0.14 JavaScript engine crashes

CVE-2009-3076 Firefox 3.0.14 Insufficient warning for PKCS11 module
installation and removal

CVE-2009-3077 Firefox 3.5.3 3.0.14 TreeColumns dangling pointer
vulnerability

CVE-2009-3078 Firefox 3.5.3 3.0.14 Location bar spoofing via tall
line-height Unicode characters

CVE-2009-3079 Firefox 3.5.3 3.0.14 Chrome privilege escalation with
FeedWriter

Several flaws were found in the processing of malformed web content. A
web page containing malicious content could cause Firefox to crash or,
potentially, execute arbitrary code with the privileges of the user
running Firefox. (CVE-2009-3070, CVE-2009-3071, CVE-2009-3072,
CVE-2009-3074,

CVE-2009-3075)

A use-after-free flaw was found in Firefox. An attacker could use this
flaw to crash Firefox or, potentially, execute arbitrary code with the
privileges of the user running Firefox. (CVE-2009-3077)

A flaw was found in the way Firefox handles malformed JavaScript. A
website with an object containing malicious JavaScript could execute
that JavaScript with the privileges of the user running Firefox.
(CVE-2009-3079)

Descriptions in the dialogs when adding and removing PKCS #11 modules
were not informative. An attacker able to trick a user into installing
a malicious PKCS #11 module could use this flaw to install their own
Certificate Authority certificates on a user's machine, making it
possible to trick the user into believing they are viewing a trusted
site or, potentially, execute arbitrary code with the privileges of
the user running Firefox. (CVE-2009-3076)

A flaw was found in the way Firefox displays the address bar when
window.open() is called in a certain way. An attacker could use this
flaw to conceal a malicious URL, possibly tricking a user into
believing they are viewing a trusted site. (CVE-2009-2654)

A flaw was found in the way Firefox displays certain Unicode
characters. An attacker could use this flaw to conceal a malicious
URL, possibly tricking a user into believing they are viewing a
trusted site. (CVE-2009-3078)

For technical details regarding these flaws, refer to the Mozilla
security advisories for Firefox 3.0.14. You can find a link to the
Mozilla advisories in the References section of this errata.

After installing the update, Firefox must be restarted for the changes
to take effect."
  );
  # https://listserv.fnal.gov/scripts/wa.exe?A2=ind0909&L=scientific-linux-errata&T=0&P=719
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?c27f4b90"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_cwe_id(20, 94);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");

  script_set_attribute(attribute:"vuln_publication_date", value:"2009/08/03");
  script_set_attribute(attribute:"patch_publication_date", value:"2009/09/09");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/01");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Scientific Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);


flag = 0;
if (rpm_check(release:"SL4", reference:"firefox-3.0.14-1.el4")) flag++;
if (rpm_check(release:"SL4", reference:"nspr-4.7.5-1.el4_8")) flag++;
if (rpm_check(release:"SL4", reference:"nspr-devel-4.7.5-1.el4_8")) flag++;

if (rpm_check(release:"SL5", reference:"firefox-3.0.14-1.el5_4")) flag++;
if (rpm_check(release:"SL5", reference:"nspr-4.7.5-1.el5_4")) flag++;
if (rpm_check(release:"SL5", reference:"nspr-devel-4.7.5-1.el5_4")) flag++;
if (rpm_check(release:"SL5", reference:"xulrunner-1.9.0.14-1.el5_4")) flag++;
if (rpm_check(release:"SL5", reference:"xulrunner-devel-1.9.0.14-1.el5_4")) flag++;
if (rpm_check(release:"SL5", reference:"xulrunner-devel-unstable-1.9.0.14-1.el5_4")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
fermilabscientific_linuxx-cpe:/o:fermilab:scientific_linux

Related

centos 3
openvas 55
redhat 3
oraclelinux 2
fedora 41
ubuntu 2
nessus 32
osv 1
debian 1
securityvulns 8
freebsd 1
suse 1
mozilla 6
prion 9
ubuntucve 9
cve 10
checkpoint_advisories 3
veracode 8
saint 3
zdi 1
centos
centos
firefox, nspr, xulrunner security update
2009-09-10 22:47:20
seamonkey security update
2009-09-10 22:51:03
seamonkey security update
2009-09-10 11:03:30
openvas
openvas
CentOS Update for firefox CESA-2009:1430 centos4 i386
2011-08-09 00:00:00
CentOS Update for firefox CESA-2009:1430 centos4 i386
2011-08-09 00:00:00
CentOS Update for firefox CESA-2009:1430 centos5 i386
2011-08-09 00:00:00
redhat
redhat
(RHSA-2009:1430) Critical: firefox security update
2009-09-09 00:00:00
(RHSA-2009:1431) Critical: seamonkey security update
2009-09-09 00:00:00
(RHSA-2009:1432) Critical: seamonkey security update
2009-09-09 00:00:00
oraclelinux
oraclelinux
firefox security update
2009-09-10 00:00:00
seamonkey security update
2009-09-10 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: gnome-web-photo-0.3-22.fc10
2009-09-11 23:28:07
[SECURITY] Fedora 10 Update: pcmanx-gtk2-0.3.8-13.fc10
2009-09-11 23:28:07
[SECURITY] Fedora 10 Update: mozvoikko-0.9.5-14.fc10
2009-09-11 23:28:07
ubuntu
ubuntu
Firefox and Xulrunner vulnerabilities
2009-09-10 00:00:00
Thunderbird vulnerabilities
2010-03-18 00:00:00
nessus
nessus
Ubuntu 8.04 LTS / 8.10 / 9.04 : firefox-3.0, xulrunner-1.9 vulnerabilities (USN-821-1)
2009-09-11 00:00:00
Fedora 10 : Miro-2.0.5-4.fc10 / blam-1.8.5-14.fc10 / epiphany-2.24.3-10.fc10 / etc (2009-9494)
2009-09-14 00:00:00
Firefox < 3.0.14 Multiple Vulnerabilities
2009-09-10 00:00:00
osv
osv
xulrunner - several vulnerabilities
2009-09-14 00:00:00
debian
debian
[SECURITY] [DSA 1885-1] New xulrunner packages fix several vulnerabilities
2009-09-14 17:05:35
securityvulns
securityvulns
Mozilla Firefox multiple security vulnerabilities
2009-09-11 00:00:00
Mozilla Foundation Security Advisory 2009-47
2009-09-10 00:00:00
Mozilla Foundation Security Advisory 2009-49
2009-09-10 00:00:00
freebsd
freebsd
mozilla firefox -- multiple vulnerabilities
2009-09-10 00:00:00
suse
suse
remote code execution in MozillaFirefox
2009-10-20 17:59:46
mozilla
mozilla
Crashes with evidence of memory corruption (rv:1.9.1.3/ 1.9.0.14) — Mozilla
2009-09-09 00:00:00
Fixes for potentially exploitable crashes ported to the legacy branch — Mozilla
2010-03-16 00:00:00
Location bar spoofing via tall line-height Unicode characters — Mozilla
2009-09-09 00:00:00
prion
prion
Memory corruption
2009-09-10 21:30:00
Memory corruption
2009-09-10 21:30:00
Command injection
2009-09-10 21:30:00
ubuntucve
ubuntucve
CVE-2009-3072
2009-09-10 00:00:00
CVE-2009-3077
2009-09-10 00:00:00
CVE-2009-3070
2009-09-10 00:00:00
cve
cve
CVE-2009-3071
2009-09-10 21:30:00
CVE-2009-3070
2009-09-10 21:30:00
CVE-2009-3072
2009-09-10 21:30:00
checkpoint_advisories
checkpoint_advisories
Mozilla Firefox PKCS11 Module Installation Code Execution (CVE-2009-3076)
2010-05-12 00:00:00
Mozilla Firefox nsPropertyTable PropertyList Memory Corruption (CVE-2009-3070)
2010-05-12 00:00:00
Mozilla Multiple Products JavaScript String Replace Buffer Overflow (CVE-2009-3075)
2010-05-26 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2020-04-10 00:37:58
Arbitrary Code Execution
2020-04-10 00:37:56
Arbitrary Code Execution
2020-04-10 00:37:57
saint
saint
Mozilla Firefox PKCS11 Module Installation Code Execution
2009-09-24 00:00:00
Mozilla Firefox PKCS11 Module Installation Code Execution
2009-09-24 00:00:00
Mozilla Firefox PKCS11 Module Installation Code Execution
2009-09-24 00:00:00
zdi
zdi
Mozilla Firefox TreeColumns Dangling Pointer Vulnerability
2009-09-10 00:00:00
JSON
Related for SL_20090909_FIREFOX_ON_SL4_X.NASL
centos3openvas55redhat3oraclelinux2fedora41ubuntu2nessus32osv1debian1securityvulns8freebsd1suse1mozilla6prion9ubuntucve9cve10checkpoint_advisories3veracode8saint3zdi1