openSUSE 10 Security Update : MozillaFirefox (MozillaFirefox-2251)

This script is Copyright (C) 2007-2014 Tenable Network Security, Inc.

Synopsis :

The remote openSUSE host is missing a security update.

Description :

This update brings MozillaFirefox to the security update release, including the following security fixes.

Full details can be found on:

MFSA2006-65: Is split into 3 sub-entries, for ongoing stability
improvements in the Mozilla browsers: CVE-2006-5464: Layout engine
flaws were fixed. CVE-2006-5747: A xml.prototype.hasOwnProperty flaw
was fixed. CVE-2006-5748: Fixes were applied to the JavaScript engine.

MFSA2006-66/CVE-2006-5462: MFSA 2006-60 reported that RSA digital
signatures with a low exponent (typically 3) could be forged. Firefox
and Thunderbird, which incorporated NSS version 3.10.2, were
incompletely patched and remained vulnerable to a variant of this

MFSA2006-67/CVE-2006-5463: shutdown demonstrated that it was possible
to modify a Script object while it was executing, potentially leading
to the execution of arbitrary JavaScript bytecode.

See also :

Solution :

Update the affected MozillaFirefox packages.

Risk factor :

High / CVSS Base Score : 7.5

Family: SuSE Local Security Checks

Nessus Plugin ID: 27116 ()

Bugtraq ID:

CVE ID: CVE-2006-5462

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now