How to Buy
This script is Copyright (C) 2012-2015 Tenable Network Security, Inc.
The remote Mac OS X host contains a web browser that is affected by
The installed version of Firefox 3.6.x is potentially affected by the
following security issues :
- Multiple memory corruption issues. By tricking a user
into visiting a specially crafted page, these issues may
allow an attacker to execute arbitrary code in the
context of the affected application. (CVE-2012-0457,
CVE-2012-0461, CVE-2012-0463, CVE-2012-0464)
- A security bypass vulnerability that can be exploited by
an attacker if the victim can be tricked into setting a
new home page by dragging a specially crafted link to
the 'home' button URL, which will set the user's home
- An information disclosure vulnerability exists due to an
out of bounds read in SVG filters. (CVE-2012-0456)
- A cross-site scripting vulnerability exists that can be
onto a frame. (CVE-2012-0455)
See also :
Upgrade to Firefox 3.6.28 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 8.1
Public Exploit Available : false
Family: MacOS X Local Security Checks
Nessus Plugin ID: 58354 ()
Bugtraq ID: 52458524595246052461524645246552466
CVE ID: CVE-2012-0455CVE-2012-0456CVE-2012-0457CVE-2012-0458CVE-2012-0461CVE-2012-0463CVE-2012-0464
Upgrade to Nessus Professional today!
Start your free Nessus Cloud trial now!
Begin Free Trial
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.