Lucene search
Copyright (C) 2009 Greenbone Networks GmbHOPENVAS:830145HistoryApr 09, 2009 - 12:00 a.m.
Mandriva Update for mozilla-firefox MDKSA-2007:050-1 (mozilla-firefox)
2009-04-0900:00:00
Copyright (C) 2009 Greenbone Networks GmbH
plugins.openvas.org
14
0.972 High
EPSS
Percentile
99.8%
Check for the Version of mozilla-firefox
###############################################################################
# OpenVAS Vulnerability Test
#
# Mandriva Update for mozilla-firefox MDKSA-2007:050-1 (mozilla-firefox)
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################
include("revisions-lib.inc");
tag_insight = "A number of security vulnerabilities have been discovered and corrected
in the latest Mozilla Firefox program, version 1.5.0.10.
This update provides the latest Firefox to correct these issues.
Update:
A regression was found in the latest Firefox packages provided where
changes to library paths caused applications that depended on the NSS
libraries (such as Thunderbird and Evolution) to fail to start or fail
to load certain SSL-related security components. These new packages
correct that problem and we apologize for any inconvenience the
previous update may have caused.";
tag_affected = "mozilla-firefox on Mandriva Linux 2007.0,
Mandriva Linux 2007.0/X86_64";
tag_solution = "Please Install the Updated Packages.";
if(description)
{
script_xref(name : "URL" , value : "http://lists.mandriva.com/security-announce/2007-03/msg00003.php");
script_id(830145);
script_version("$Revision: 6568 $");
script_tag(name:"last_modification", value:"$Date: 2017-07-06 15:04:21 +0200 (Thu, 06 Jul 2017) $");
script_tag(name:"creation_date", value:"2009-04-09 13:53:01 +0200 (Thu, 09 Apr 2009)");
script_tag(name:"cvss_base", value:"9.3");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_xref(name: "MDKSA", value: "2007:050-1");
script_cve_id("CVE-2006-6077", "CVE-2007-0008", "CVE-2007-0009", "CVE-2007-0775", "CVE-2007-0777", "CVE-2007-0778", "CVE-2007-0779", "CVE-2007-0780", "CVE-2007-0800", "CVE-2007-0981", "CVE-2007-0995", "CVE-2007-0996", "CVE-2007-1092");
script_name( "Mandriva Update for mozilla-firefox MDKSA-2007:050-1 (mozilla-firefox)");
script_summary("Check for the Version of mozilla-firefox");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2009 Greenbone Networks GmbH");
script_family("Mandrake Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/mandriva_mandrake_linux", "ssh/login/release");
script_tag(name : "affected" , value : tag_affected);
script_tag(name : "solution" , value : tag_solution);
script_tag(name : "insight" , value : tag_insight);
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("pkg-lib-rpm.inc");
release = get_kb_item("ssh/login/release");
res = "";
if(release == NULL){
exit(0);
}
if(release == "MNDK_2007.0")
{
if ((res = isrpmvuln(pkg:"libmozilla-firefox1.5.0.10", rpm:"libmozilla-firefox1.5.0.10~1.5.0.10~2mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libmozilla-firefox1.5.0.10-devel", rpm:"libmozilla-firefox1.5.0.10-devel~1.5.0.10~2mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libnspr4", rpm:"libnspr4~1.5.0.10~2mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libnspr4-devel", rpm:"libnspr4-devel~1.5.0.10~2mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libnspr4-static-devel", rpm:"libnspr4-static-devel~1.5.0.10~2mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libnss3", rpm:"libnss3~1.5.0.10~2mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libnss3-devel", rpm:"libnss3-devel~1.5.0.10~2mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"mozilla-firefox", rpm:"mozilla-firefox~1.5.0.10~2mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64mozilla-firefox1.5.0.10", rpm:"lib64mozilla-firefox1.5.0.10~1.5.0.10~2mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64mozilla-firefox1.5.0.10-devel", rpm:"lib64mozilla-firefox1.5.0.10-devel~1.5.0.10~2mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64nspr4", rpm:"lib64nspr4~1.5.0.10~2mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64nspr4-devel", rpm:"lib64nspr4-devel~1.5.0.10~2mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64nspr4-static-devel", rpm:"lib64nspr4-static-devel~1.5.0.10~2mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64nss3", rpm:"lib64nss3~1.5.0.10~2mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64nss3-devel", rpm:"lib64nss3-devel~1.5.0.10~2mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99); # Not vulnerable.
exit(0);
}
Related
openvas
openvas
Mandriva Update for mozilla-firefox MDKSA-2007:050 (mozilla-firefox)
2009-04-09 00:00:00
Mandriva Update for mozilla-firefox MDKSA-2007:050 (mozilla-firefox)
2009-04-09 00:00:00
Mandriva Update for mozilla-firefox MDKSA-2007:050-1 (mozilla-firefox)
2009-04-09 00:00:00
nessus
nessus
CentOS 4 : firefox (CESA-2007:0079)
2007-02-26 00:00:00
Oracle Linux 4 : Firefox (ELSA-2007-0079)
2013-07-12 00:00:00
RHEL 4 : Firefox (RHSA-2007:0079)
2007-02-26 00:00:00
centos
centos
thunderbird security update
2007-03-04 11:06:21
firefox security update
2007-02-24 13:53:25
seamonkey security update
2007-03-16 07:21:16
ubuntu
ubuntu
Firefox vulnerabilities
2007-03-01 00:00:00
Firefox regression
2007-03-02 00:00:00
Thunderbird vulnerabilities
2007-03-07 00:00:00
redhat
redhat
(RHSA-2007:0078) Critical: thunderbird security update
2007-03-02 00:00:00
(RHSA-2007:0108) Critical: thunderbird security update
2007-03-13 00:00:00
(RHSA-2007:0079) Critical: Firefox security update
2007-02-23 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2007-02-23 00:00:00
oraclelinux
oraclelinux
Critical: Firefox security update
2007-02-24 00:00:00
Critical: thunderbird security update
2007-03-02 00:00:00
Critical: seamonkey security update
2007-02-24 00:00:00
suse
suse
remote code execution in mozilla,MozillaThunderbird,seamonkey
2007-03-20 12:18:53
remote code execution in MozillaFirefox,seamonkey
2007-03-06 19:04:00
gentoo
gentoo
SeaMonkey: Multiple vulnerabilities
2007-03-09 00:00:00
Mozilla Firefox: Multiple vulnerabilities
2007-03-02 00:00:00
Mozilla Thunderbird: Multiple vulnerabilities
2007-03-18 00:00:00
osv
osv
mozilla-firefox
2007-07-22 00:00:00
debian
debian
securityvulns
securityvulns
Multiple Mozilla Firefox / Thunderbird / Seamonkey vulnerabilities
2007-03-06 00:00:00
Mozilla Foundation Security Advisory 2007-02
2007-02-27 00:00:00
Mozilla Foundation Security Advisory 2007-06
2007-02-27 00:00:00
mozilla
mozilla
Improvements to help protect against Cross-Site Scripting attacks — Mozilla
2007-02-23 00:00:00
Mozilla Network Security Services (NSS) SSLv2 buffer overflows — Mozilla
2007-02-23 00:00:00
fedora
fedora
[SECURITY] Fedora Core 5 Update: nspr-4.6.5-0.5.0.fc5
2007-02-26 22:03:17
[SECURITY] Fedora Core 6 Update: nss-3.11.5-0.6.0.fc6
2007-02-26 22:03:36
[SECURITY] Fedora Core 6 Update: nspr-4.6.5-0.6.0.fc6
2007-02-26 22:03:32
cve
cve
cvelist
cvelist
veracode
veracode
Cross-Site Scripting (XSS)
2020-04-10 00:12:48
Clickjacking
2020-04-10 00:12:51
Arbitrary Code Execution
2020-04-10 00:12:49
ubuntucve
ubuntucve
prion
prion
seebug
seebug
Mozilla Firefox <= 2.0.0.1 (location.hostname) Cross-Domain Vulnerability
2014-07-01 00:00:00
Mozilla Firefox <= 2.0.0.1 (location.hostname) Cross-Domain Vulnerability
2007-02-20 00:00:00
Mozilla Firefox <= 2.0.0.1 (location.hostname) Cross-Domain Vulnerability
2007-02-22 00:00:00
cert
cert
Mozilla browsers "location.hostname" cross-domain vulnerability
2007-02-15 00:00:00
checkpoint_advisories
checkpoint_advisories
exploitpack
exploitpack
Mozilla Firefox 2.0.0.1 - location.hostname Cross-Domain
2007-02-20 00:00:00
jvn
jvn
JVN#38605899 Mozilla Firefox cross-site scripting vulnerability
2007-06-01 00:00:00