Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2014 Greenbone Networks GmbHOPENVAS:850567
HistoryFeb 11, 2014 - 12:00 a.m.

SuSE Update for Mozilla openSUSE-SU-2014:0213-1 (Mozilla)

2014-02-1100:00:00
Copyright (C) 2014 Greenbone Networks GmbH
plugins.openvas.org
11

0.029 Low

EPSS

Percentile

89.7%

JSON

Check for the Version of Mozilla

###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_suse_2014_0213_1.nasl 8044 2017-12-08 08:32:49Z santu $
#
# SuSE Update for Mozilla openSUSE-SU-2014:0213-1 (Mozilla)
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

include("revisions-lib.inc");

if(description)
{
  script_id(850567);
  script_version("$Revision: 8044 $");
  script_tag(name:"last_modification", value:"$Date: 2017-12-08 09:32:49 +0100 (Fri, 08 Dec 2017) $");
  script_tag(name:"creation_date", value:"2014-02-11 10:40:12 +0530 (Tue, 11 Feb 2014)");
  script_cve_id("CVE-2013-1740", "CVE-2014-1477", "CVE-2014-1478", "CVE-2014-1479",
                "CVE-2014-1481", "CVE-2014-1482", "CVE-2014-1486", "CVE-2014-1487",
                "CVE-2014-1490", "CVE-2014-1491");
  script_tag(name:"cvss_base", value:"10.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_name("SuSE Update for Mozilla openSUSE-SU-2014:0213-1 (Mozilla)");

  tag_insight = "
  Updates for mozilla-nss (3.15.4) MozillaFirefox (24.3.0esr)
  MozillaThunderbird (24.3.0) including fixes for the
  following issues:
  * MFSA 2014-01/CVE-2014-1477/CVE-2014-1478 Miscellaneous
  memory safety hazards (rv:27.0 / rv:24.3)
  * MFSA 2014-02/CVE-2014-1479 (bmo#911864) Clone protected
  content with XBL scopes
  * MFSA 2014-04/CVE-2014-1482 (bmo#943803) Incorrect use
  of discarded images by RasterImage
  * MFSA 2014-08/CVE-2014-1486 (bmo#942164) Use-after-free
  with imgRequestProxy and image processing
  * MFSA 2014-09/CVE-2014-1487 (bmo#947592) Cross-origin
  information leak through web workers
  * MFSA 2014-12/CVE-2014-1490/CVE-2014-1491 (bmo#934545,
  bmo#930874, bmo#930857) NSS ticket handling issues
  * MFSA 2014-13/CVE-2014-1481(bmo#936056) Inconsistent
  JavaScript handling of access to Window objects";

  tag_affected = "Mozilla on openSUSE 11.4";

  tag_solution = "Please Install the Updated Packages.";


  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  script_xref(name: "openSUSE-SU", value: "2014:0213_1");
  script_summary("Check for the Version of Mozilla");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2014 Greenbone Networks GmbH");
  script_family("SuSE Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/suse", "ssh/login/rpms");
  exit(0);
}


include("pkg-lib-rpm.inc");

release = get_kb_item("ssh/login/release");

res = "";
if(release == NULL){
  exit(0);
}

if(release == "openSUSE11.4")
{

  if ((res = isrpmvuln(pkg:"MozillaFirefox", rpm:"MozillaFirefox~24.3.0~99.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"MozillaFirefox-branding-upstream", rpm:"MozillaFirefox-branding-upstream~24.3.0~99.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"MozillaFirefox-buildsymbols", rpm:"MozillaFirefox-buildsymbols~24.3.0~99.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"MozillaFirefox-debuginfo", rpm:"MozillaFirefox-debuginfo~24.3.0~99.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"MozillaFirefox-debugsource", rpm:"MozillaFirefox-debugsource~24.3.0~99.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"MozillaFirefox-devel", rpm:"MozillaFirefox-devel~24.3.0~99.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"MozillaFirefox-translations-common", rpm:"MozillaFirefox-translations-common~24.3.0~99.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"MozillaFirefox-translations-other", rpm:"MozillaFirefox-translations-other~24.3.0~99.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"MozillaThunderbird", rpm:"MozillaThunderbird~24.3.0~85.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"MozillaThunderbird-buildsymbols", rpm:"MozillaThunderbird-buildsymbols~24.3.0~85.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"MozillaThunderbird-debuginfo", rpm:"MozillaThunderbird-debuginfo~24.3.0~85.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"MozillaThunderbird-debugsource", rpm:"MozillaThunderbird-debugsource~24.3.0~85.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"MozillaThunderbird-devel", rpm:"MozillaThunderbird-devel~24.3.0~85.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"MozillaThunderbird-translations-common", rpm:"MozillaThunderbird-translations-common~24.3.0~85.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"MozillaThunderbird-translations-other", rpm:"MozillaThunderbird-translations-other~24.3.0~85.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"enigmail", rpm:"enigmail~1.6.0+24.3.0~85.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libfreebl3", rpm:"libfreebl3~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libfreebl3-debuginfo", rpm:"libfreebl3-debuginfo~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libsoftokn3", rpm:"libsoftokn3~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libsoftokn3-debuginfo", rpm:"libsoftokn3-debuginfo~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss", rpm:"mozilla-nss~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-certs", rpm:"mozilla-nss-certs~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-certs-debuginfo", rpm:"mozilla-nss-certs-debuginfo~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-debuginfo", rpm:"mozilla-nss-debuginfo~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-debugsource", rpm:"mozilla-nss-debugsource~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-devel", rpm:"mozilla-nss-devel~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-sysinit", rpm:"mozilla-nss-sysinit~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-sysinit-debuginfo", rpm:"mozilla-nss-sysinit-debuginfo~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-tools", rpm:"mozilla-nss-tools~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-tools-debuginfo", rpm:"mozilla-nss-tools-debuginfo~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libfreebl3-32bit", rpm:"libfreebl3-32bit~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libfreebl3-debuginfo-32bit", rpm:"libfreebl3-debuginfo-32bit~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libsoftokn3-32bit", rpm:"libsoftokn3-32bit~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libsoftokn3-debuginfo-32bit", rpm:"libsoftokn3-debuginfo-32bit~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-32bit", rpm:"mozilla-nss-32bit~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-certs-32bit", rpm:"mozilla-nss-certs-32bit~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-certs-debuginfo-32bit", rpm:"mozilla-nss-certs-debuginfo-32bit~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-debuginfo-32bit", rpm:"mozilla-nss-debuginfo-32bit~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-sysinit-32bit", rpm:"mozilla-nss-sysinit-32bit~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-sysinit-debuginfo-32bit", rpm:"mozilla-nss-sysinit-debuginfo-32bit~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libfreebl3-debuginfo-x86", rpm:"libfreebl3-debuginfo-x86~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libfreebl3-x86", rpm:"libfreebl3-x86~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libsoftokn3-debuginfo-x86", rpm:"libsoftokn3-debuginfo-x86~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libsoftokn3-x86", rpm:"libsoftokn3-x86~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-certs-debuginfo-x86", rpm:"mozilla-nss-certs-debuginfo-x86~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-certs-x86", rpm:"mozilla-nss-certs-x86~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-debuginfo-x86", rpm:"mozilla-nss-debuginfo-x86~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-sysinit-debuginfo-x86", rpm:"mozilla-nss-sysinit-debuginfo-x86~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-sysinit-x86", rpm:"mozilla-nss-sysinit-x86~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"mozilla-nss-x86", rpm:"mozilla-nss-x86~3.15.4~78.1", rls:"openSUSE11.4")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}

References

Related

nessus 48
suse 5
openvas 59
debian 1
veracode 8
mageia 3
redhat 5
ubuntu 4
oraclelinux 4
centos 4
freebsd 1
securityvulns 3
mozilla 6
f5 2
ibm 4
seebug 2
cve 9
cvelist 8
slackware 1
debiancve 3
ubuntucve 9
prion 9
intothesymmetry 1
nessus
nessus
Mozilla Thunderbird < 24.3 Multiple Vulnerabilities
2014-02-05 00:00:00
Mozilla Thunderbird < 24.3 Multiple Vulnerabilities
2014-02-05 00:00:00
Fedora 20 : thunderbird-24.3.0-1.fc20 (2014-2041)
2014-02-07 00:00:00
suse
suse
Mozilla updates February 2014 (important)
2014-02-08 13:04:12
Mozilla Firefox 27 release (important)
2014-02-08 09:04:14
Security update for MozillaFirefox (important)
2014-02-18 13:25:23
openvas
openvas
openSUSE: Security Advisory for Mozilla (openSUSE-SU-2014:0213-1)
2014-02-11 00:00:00
Mozilla Firefox ESR Multiple Vulnerabilities-01 (Feb 2014) - Mac OS X
2014-02-11 00:00:00
Debian Security Advisory DSA 2858-1 (iceweasel - several vulnerabilities)
2014-02-10 00:00:00
debian
debian
[SECURITY] [DSA 2858-1] iceweasel security update
2014-02-10 15:42:08
veracode
veracode
Authentication Bypass
2019-05-02 05:00:58
Arbitrary Code Execution
2019-05-02 05:00:59
Same-Origin Policy Bypass
2019-05-02 05:00:59
mageia
mageia
Updated Firefox & Thunderbird packages fix multiple security vulnerabilities
2014-02-07 00:02:09
Updated seamonkey packages fix multiple vulnerabilities
2014-02-11 00:18:15
Updated nss packages fix security vulnerability
2014-01-21 20:23:58
redhat
redhat
(RHSA-2014:0133) Important: thunderbird security update
2014-02-04 00:00:00
(RHSA-2014:0132) Critical: firefox security update
2014-02-04 00:00:00
(RHSA-2014:1246) Moderate: nss and nspr security, bug fix, and enhancement update
2014-09-16 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2014-02-19 00:00:00
Firefox vulnerabilities
2014-02-10 00:00:00
Firefox regression
2014-02-19 00:00:00
oraclelinux
oraclelinux
firefox security update
2014-02-04 00:00:00
thunderbird security update
2014-02-04 00:00:00
nss and nspr security, bug fix, and enhancement update
2014-09-17 00:00:00
centos
centos
thunderbird security update
2014-02-05 09:18:22
firefox security update
2014-02-05 09:15:53
nss security update
2014-09-30 11:21:57
freebsd
freebsd
mozilla -- multiple vulnerabilities
2014-02-04 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2014-02-10 00:00:00
[USN-2088-1] NSS vulnerability
2014-01-29 00:00:00
Mozilla NSS SSL connection spoofing
2014-01-29 00:00:00
mozilla
mozilla
NSS ticket handling issues — Mozilla
2014-02-04 00:00:00
Miscellaneous memory safety hazards (rv:27.0 / rv:24.3) — Mozilla
2014-02-04 00:00:00
Incorrect use of discarded images by RasterImage — Mozilla
2014-02-04 00:00:00
f5
f5
SOL16716 - Multiple Mozilla NSS vulnerabilities
2015-06-05 00:00:00
K16716 : Multiple Mozilla NSS vulnerabilities
2015-09-17 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in Network Security Services (NSS) and Netscape Portable Runtime (NSPR) affect IBM SAN Volume Controller and Storwize Family (CVE-2013-1740, CVE-2014-1490, CVE-2014-1491, CVE-2014-1492, CVE-2014-1544, CVE-2014-1545)
2023-03-29 01:48:02
Security Bulletin: Six (6) Vulnerabilities in Network Security Services (NSS) & Netscape Portable Runtime (NSPR) affect IBM FlashSystem and TMS RAMSAN 710, 720, 810, and 820 systems (CVE-2013-1740, CVE-2014-1490, CVE-2014-1491, CVE-2014-1492, CVE-2014-154
2023-02-28 01:12:10
Security Bulletin: Six (6) Vulnerabilities in Network Security Services (NSS) & Netscape Portable Runtime (NSPR) affect IBM FlashSystem 840 and V840 (CVE-2013-1740, CVE-2014-1490, CVE-2014-1491, CVE-2014-1492, CVE-2014-1544, CVE-2014-1545)
2023-02-18 01:45:50
seebug
seebug
Mozilla Network Security Services释放后重利用内存破坏漏洞(CVE-2014-1490)
2014-02-12 00:00:00
Mozilla Firefox/Thunderbird/SeaMonkey多个内存破坏漏洞(CVE-2014-1477)
2014-02-12 00:00:00
cve
cve
CVE-2013-1740
2014-01-18 22:55:00
CVE-2014-1490
2014-02-06 05:44:00
CVE-2014-1481
2014-02-06 05:44:00
cvelist
cvelist
CVE-2014-1482
2014-02-06 02:00:00
CVE-2013-1740
2014-01-18 22:00:00
CVE-2014-1479
2014-02-06 02:00:00
slackware
slackware
mozilla-nss
2014-01-28 14:58:39
debiancve
debiancve
CVE-2013-1740
2014-01-18 22:55:00
CVE-2014-1490
2014-02-06 05:44:00
CVE-2014-1491
2014-02-06 05:44:00
ubuntucve
ubuntucve
CVE-2014-1482
2014-02-04 00:00:00
CVE-2014-1479
2014-02-04 00:00:00
CVE-2014-1490
2014-02-05 00:00:00
prion
prion
Race condition
2014-02-06 05:44:00
Design/Logic Flaw
2014-02-06 05:44:00
Memory corruption
2014-02-06 05:44:00
intothesymmetry
intothesymmetry
Small subgroup attack in Mozilla NSS
2015-12-22 13:29:00

0.029 Low

EPSS

Percentile

89.7%

JSON
Related for OPENVAS:850567
nessus48suse5openvas59debian1veracode8mageia3redhat5ubuntu4oraclelinux4centos4freebsd1securityvulns3mozilla6f52ibm4seebug2cve9cvelist8slackware1debiancve3ubuntucve9prion9intothesymmetry1