Detections
Analytics
Fedora 11 : Miro-2.5.4-3.fc11 / blam-1.8.5-19.fc11 / chmsee-1.0.1-16.fc11 / epiphany-2.26.3-9.fc11 / etc (2010-5515)
critical Nessus Plugin ID 47394
Language:
Synopsis
The remote Fedora host is missing one or more security updates.Description
Update to new upstream Firefox version 3.5.9 / XULRunner version 1.9.1.9, fixing multiple security issues detailed in the upstream advisories: http://www.mozilla.org/security/known- vulnerabilities/firefox35.html#firefox3.5.9 Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner. CVE-2010-0173 CVE-2010-0174 CVE-2010-0175 CVE-2010-0176 CVE-2010-0177 CVE-2010-0178 CVE-2010-0181Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
Solution
Update the affected packages.See Also
https://www.mozilla.org/en-US/security/known-
https://bugzilla.redhat.com/show_bug.cgi?id=578147
https://bugzilla.redhat.com/show_bug.cgi?id=578149
https://bugzilla.redhat.com/show_bug.cgi?id=578150
https://bugzilla.redhat.com/show_bug.cgi?id=578152
https://bugzilla.redhat.com/show_bug.cgi?id=578154
http://www.nessus.org/u?43bfddc5
http://www.nessus.org/u?7f589881
http://www.nessus.org/u?8f6e0735
http://www.nessus.org/u?1c7c49f2
http://www.nessus.org/u?0d48fc57
http://www.nessus.org/u?fd4ccac8
http://www.nessus.org/u?3e4b3782
http://www.nessus.org/u?95dc08cc
http://www.nessus.org/u?fb363a01
http://www.nessus.org/u?b3c4c13e
http://www.nessus.org/u?66ed8041
http://www.nessus.org/u?8e4a362e
http://www.nessus.org/u?58b09b76
http://www.nessus.org/u?fbd33f02
http://www.nessus.org/u?119ac7aa
http://www.nessus.org/u?6d6a242d
Plugin Details
Severity: Critical
ID: 47394
File Name: fedora_2010-5515.nasl
Version: 1.17
Type: local
Agent: unix
Family: Fedora Local Security Checks
Published: 7/1/2010
Updated: 1/11/2021
Supported Sensors: Agentless Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 8.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: p-cpe:/a:fedoraproject:fedora:miro, p-cpe:/a:fedoraproject:fedora:blam, p-cpe:/a:fedoraproject:fedora:chmsee, p-cpe:/a:fedoraproject:fedora:epiphany, p-cpe:/a:fedoraproject:fedora:epiphany-extensions, p-cpe:/a:fedoraproject:fedora:evolution-rss, p-cpe:/a:fedoraproject:fedora:firefox, p-cpe:/a:fedoraproject:fedora:galeon, p-cpe:/a:fedoraproject:fedora:gnome-python2-extras, p-cpe:/a:fedoraproject:fedora:gnome-web-photo, p-cpe:/a:fedoraproject:fedora:google-gadgets, p-cpe:/a:fedoraproject:fedora:hulahop, p-cpe:/a:fedoraproject:fedora:kazehakase, p-cpe:/a:fedoraproject:fedora:mozvoikko, p-cpe:/a:fedoraproject:fedora:pcmanx-gtk2, p-cpe:/a:fedoraproject:fedora:perl-gtk2-mozembed, p-cpe:/a:fedoraproject:fedora:xulrunner, p-cpe:/a:fedoraproject:fedora:yelp, cpe:/o:fedoraproject:fedora:11
Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list
Exploit Ease: No known exploits are available
Patch Publication Date: 4/1/2010
Vulnerability Publication Date: 4/5/2010
Reference Information
CVE: CVE-2010-0174, CVE-2010-0175, CVE-2010-0176, CVE-2010-0177, CVE-2010-0178
BID: 39122, 39123, 39125, 39128, 39133, 39137
FEDORA: 2010-5515