Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2021 Tenable Network Security, Inc.SUSE_11_FIREFOX-201210B-121029.NASL
HistoryJan 25, 2013 - 12:00 a.m.

SuSE 11.2 Security Update : Mozilla Firefox (SAT Patch Number 7004)

2013-01-2500:00:00
This script is Copyright (C) 2013-2021 Tenable Network Security, Inc.
www.tenable.com
16

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.007 Low

EPSS

Percentile

80.4%

JSON

Mozilla Firefox was updated to the 10.0.10ESR security release.

The following issue has been fixed :

  • Mozilla has fixed a number of issues related to the Location object in order to enhance overall security.
    Details for each of the current fixed issues are below.
    (MFSA 2012-90)

    Thunderbird is only affected by window.location issues through RSS feeds and extensions that load web content.

  • Security researcher Mariusz Mlynski reported that the true value of window.location could be shadowed by user content through the use of the valueOf method, which can be combined with some plugins to perform a cross-site scripting (XSS) attack on users. (CVE-2012-4194)

  • Mozilla security researcher moz_bug_r_a4 discovered that the CheckURL function in window.location can be forced to return the wrong calling document and principal, allowing a cross-site scripting (XSS) attack. There is also the possibility of gaining arbitrary code execution if the attacker can take advantage of an add-on that interacts with the page content. (CVE-2012-4195)

  • Security researcher Antoine Delignat-Lavaud of the PROSECCO research team at INRIA Paris reported the ability to use property injection by prototype to bypass security wrapper protections on the Location object, allowing the cross-origin reading of the Location object. (CVE-2012-4196)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from SuSE 11 update information. The text itself is
# copyright (C) Novell, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(64134);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2012-4194", "CVE-2012-4195", "CVE-2012-4196");

  script_name(english:"SuSE 11.2 Security Update : Mozilla Firefox (SAT Patch Number 7004)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SuSE 11 host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Mozilla Firefox was updated to the 10.0.10ESR security release.

The following issue has been fixed :

  - Mozilla has fixed a number of issues related to the
    Location object in order to enhance overall security.
    Details for each of the current fixed issues are below.
    (MFSA 2012-90)

    Thunderbird is only affected by window.location issues
    through RSS feeds and extensions that load web content.

  - Security researcher Mariusz Mlynski reported that the
    true value of window.location could be shadowed by user
    content through the use of the valueOf method, which can
    be combined with some plugins to perform a cross-site
    scripting (XSS) attack on users. (CVE-2012-4194)

  - Mozilla security researcher moz_bug_r_a4 discovered that
    the CheckURL function in window.location can be forced
    to return the wrong calling document and principal,
    allowing a cross-site scripting (XSS) attack. There is
    also the possibility of gaining arbitrary code execution
    if the attacker can take advantage of an add-on that
    interacts with the page content. (CVE-2012-4195)

  - Security researcher Antoine Delignat-Lavaud of the
    PROSECCO research team at INRIA Paris reported the
    ability to use property injection by prototype to bypass
    security wrapper protections on the Location object,
    allowing the cross-origin reading of the Location
    object. (CVE-2012-4196)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.mozilla.org/security/announce/2012/mfsa2012-90.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=786522"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-4194.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-4195.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-4196.html"
  );
  script_set_attribute(attribute:"solution", value:"Apply SAT patch number 7004.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:MozillaFirefox");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:MozillaFirefox-translations");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:mozilla-nspr");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:mozilla-nspr-32bit");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");

  script_set_attribute(attribute:"patch_publication_date", value:"2012/10/29");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/01/25");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2013-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)11") audit(AUDIT_OS_NOT, "SuSE 11");
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SuSE 11", cpu);

pl = get_kb_item("Host/SuSE/patchlevel");
if (isnull(pl) || int(pl) != 2) audit(AUDIT_OS_NOT, "SuSE 11.2");


flag = 0;
if (rpm_check(release:"SLED11", sp:2, cpu:"i586", reference:"MozillaFirefox-10.0.10-0.3.1")) flag++;
if (rpm_check(release:"SLED11", sp:2, cpu:"i586", reference:"MozillaFirefox-translations-10.0.10-0.3.1")) flag++;
if (rpm_check(release:"SLED11", sp:2, cpu:"i586", reference:"mozilla-nspr-4.9.3-0.2.1")) flag++;
if (rpm_check(release:"SLED11", sp:2, cpu:"x86_64", reference:"MozillaFirefox-10.0.10-0.3.1")) flag++;
if (rpm_check(release:"SLED11", sp:2, cpu:"x86_64", reference:"MozillaFirefox-translations-10.0.10-0.3.1")) flag++;
if (rpm_check(release:"SLED11", sp:2, cpu:"x86_64", reference:"mozilla-nspr-4.9.3-0.2.1")) flag++;
if (rpm_check(release:"SLED11", sp:2, cpu:"x86_64", reference:"mozilla-nspr-32bit-4.9.3-0.2.1")) flag++;
if (rpm_check(release:"SLES11", sp:2, reference:"MozillaFirefox-10.0.10-0.3.1")) flag++;
if (rpm_check(release:"SLES11", sp:2, reference:"MozillaFirefox-translations-10.0.10-0.3.1")) flag++;
if (rpm_check(release:"SLES11", sp:2, reference:"mozilla-nspr-4.9.3-0.2.1")) flag++;
if (rpm_check(release:"SLES11", sp:2, cpu:"s390x", reference:"mozilla-nspr-32bit-4.9.3-0.2.1")) flag++;
if (rpm_check(release:"SLES11", sp:2, cpu:"x86_64", reference:"mozilla-nspr-32bit-4.9.3-0.2.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:mozillafirefox
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:mozillafirefox-translations
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:mozilla-nspr
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:mozilla-nspr-32bit
novellsuse_linux11cpe:/o:novell:suse_linux:11

Related

nessus 27
openvas 46
veracode 3
ubuntu 2
freebsd 1
oraclelinux 2
centos 2
redhat 2
suse 3
mozilla 1
cve 3
nvd 3
prion 3
cvelist 3
ubuntucve 3
fedora 1
ibm 2
securityvulns 1
gentoo 1
nessus
nessus
Thunderbird < 16.0.2 Multiple Vulnerabilities (Mac OS X)
2012-10-29 00:00:00
Firefox 10.x < 10.0.10 Multiple Vulnerabilities
2012-10-29 00:00:00
Oracle Linux 5 / 6 : firefox (ELSA-2012-1407)
2013-07-12 00:00:00
openvas
openvas
Mozilla Firefox ESR Multiple Vulnerabilities - November12 (Mac OS X)
2012-11-02 00:00:00
Mozilla Thunderbird Multiple Vulnerabilities - November12 (Mac OS X)
2012-11-02 00:00:00
Mozilla Firefox ESR Multiple Vulnerabilities - November12 (Windows)
2012-11-02 00:00:00
veracode
veracode
Same-Origin Policy Bypass
2019-05-02 04:43:52
Arbitrary Code Execution
2019-05-02 04:43:52
Cross-site Scripting (XSS)
2019-01-15 08:59:31
ubuntu
ubuntu
Firefox vulnerabilities
2012-10-26 00:00:00
Thunderbird vulnerabilities
2012-10-30 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2012-10-26 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2012-10-29 00:00:00
firefox security update
2012-10-26 00:00:00
centos
centos
thunderbird security update
2012-10-30 03:07:34
firefox, xulrunner security update
2012-10-27 02:12:20
redhat
redhat
(RHSA-2012:1407) Critical: firefox security update
2012-10-26 00:00:00
(RHSA-2012:1413) Important: thunderbird security update
2012-10-29 00:00:00
suse
suse
Security update for Mozilla Firefox (important)
2012-10-31 22:08:42
Mozilla Suite: Update to 16.0.2 (important)
2012-10-30 01:08:34
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
mozilla
mozilla
Fixes for Location object issues — Mozilla
2012-10-26 00:00:00
cve
cve
CVE-2012-4196
2012-10-29 18:55:01
CVE-2012-4195
2012-10-29 18:55:01
CVE-2012-4194
2012-10-29 18:55:01
nvd
nvd
CVE-2012-4196
2012-10-29 18:55:01
CVE-2012-4195
2012-10-29 18:55:01
CVE-2012-4194
2012-10-29 18:55:01
prion
prion
Code injection
2012-10-29 18:55:00
Cross site scripting
2012-10-29 18:55:00
Cross site scripting
2012-10-29 18:55:00
cvelist
cvelist
CVE-2012-4196
2012-10-29 18:00:00
CVE-2012-4194
2012-10-29 18:00:00
CVE-2012-4195
2012-10-29 18:00:00
ubuntucve
ubuntucve
CVE-2012-4196
2012-10-26 00:00:00
CVE-2012-4195
2012-10-26 00:00:00
CVE-2012-4194
2012-10-26 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: seamonkey-2.13.2-2.fc18
2012-11-14 02:12:21
ibm
ibm
Security Bulletin: Storwize V7000 Unified V1.4.1.0 Includes Fixes for Multiple Vendor Security Vulnerabilities
2022-09-26 04:23:14
Security Bulletin: SONAS Update Includes Fixes for Multiple Vendor Security Vulnerabilities
2022-09-26 04:23:14
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2012-10-29 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.007 Low

EPSS

Percentile

80.4%

JSON
Related for SUSE_11_FIREFOX-201210B-121029.NASL
nessus27openvas46veracode3ubuntu2freebsd1oraclelinux2centos2redhat2suse3mozilla1cve3nvd3prion3cvelist3ubuntucve3fedora1ibm2securityvulns1gentoo1