This script is Copyright (C) 2006-2013 Tenable Network Security, Inc.
The remote Fedora Core host is missing a security update.
Several bugs were found in the way Firefox processes malformed
different open web page, possibly stealing sensitive information or
conducting a cross-site scripting attack. (CVE-2006-1731,
Several bugs were found in the way Firefox processes certain
page to steal sensitive information or install browser malware.
(CVE-2006-1727, CVE-2006-1728, CVE-2006-1733, CVE-2006-1734,
Several bugs were found in the way Firefox processes malformed web
pages. A carefully crafted malicious web page could cause the
execution of arbitrary code as the user running Firefox.
(CVE-2006-0749, CVE-2006-1724, CVE-2006-1730, CVE-2006-1737,
CVE-2006-1738, CVE-2006-1739, CVE-2006-1790)
A bug was found in the way Firefox displays the secure site icon. If a
browser is configured to display the non-default secure site modal
warning dialog, it may be possible to trick a user into believing they
are viewing a secure site. (CVE-2006-1740)
on 'input' form elements. A malicious web page could be created in
such a way that when a user submits a form, an arbitrary file could be
uploaded to the attacker. (CVE-2006-1729)
See also :
Update the affected firefox and / or firefox-debuginfo packages.
Risk factor :
Critical / CVSS Base Score : 10.0
Family: Fedora Local Security Checks
Nessus Plugin ID: 21250 (fedora_2006-410.nasl)
CVE ID: CVE-2006-0749