Firefox ESR 24.x < 24.1.1 NSS and NSPR Multiple Vulnerabilities (Mac OS X)

This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.


Synopsis :

The remote Mac OS X host contains a web browser that is potentially
affected by multiple vulnerabilities.

Description :

The installed version of Firefox ESR 24.x is a version prior to 24.1.1
and is, therefore, potentially affected by the following vulnerabilities :

- An error exists related to handling input greater than
half the maximum size of the 'PRUint32' value.
(CVE-2013-1741)

- An error exists in the 'Null_Cipher' function in the
file 'ssl/ssl3con.c' related to handling invalid
handshake packets that could allow arbitrary code
execution. (CVE-2013-5605)

- An error exists in the 'CERT_VerifyCert' function in
the file 'lib/certhigh/certvfy.c' that could allow
invalid certificates to be treated as valid.
(CVE-2013-5606)

- An integer truncation error exists in the function
'PL_ArenaAllocate' in the Netscape Portable Runtime
(NSPR) library. (CVE-2013-5607)

See also :

http://www.mozilla.org/security/announce/2013/mfsa2013-103.html
https://www.mozilla.org/en-US/firefox/24.1.1/releasenotes/
https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.3_release_notes

Solution :

Upgrade to Firefox ESR 24.1.1 or later.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.1
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : false

Family: MacOS X Local Security Checks

Nessus Plugin ID: 70945 ()

Bugtraq ID: 63736
63737
63738
63802

CVE ID: CVE-2013-1741
CVE-2013-5605
CVE-2013-5606
CVE-2013-5607