Fedora 8 : Miro-1.1.2-2.fc8 / blam-1.8.3-14.fc8 / chmsee-1.0.0-1.30.fc8 / devhelp-0.16.1-6.fc8 / etc (2008-2682)

This script is Copyright (C) 2008-2016 Tenable Network Security, Inc.


Synopsis :

The remote Fedora host is missing one or more security updates.

Description :

Mozilla Firefox is an open source Web browser. Several flaws were
found in the processing of some malformed web content. A web page
containing such malicious content could cause Firefox to crash or,
potentially, execute arbitrary code as the user running Firefox.
(CVE-2008-1233, CVE-2008-1235, CVE-2008-1236, CVE-2008-1237) Several
flaws were found in the display of malformed web content. A web page
containing specially crafted content could, potentially, trick a
Firefox user into surrendering sensitive information. (CVE-2008-1234,
CVE-2008-1238, CVE-2008-1241) All Firefox users should upgrade to
these updated packages, which correct these issues, and are rebuilt
against the update Firefox packages.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

https://bugzilla.redhat.com/show_bug.cgi?id=438713
https://bugzilla.redhat.com/show_bug.cgi?id=438715
https://bugzilla.redhat.com/show_bug.cgi?id=438717
https://bugzilla.redhat.com/show_bug.cgi?id=438718
https://bugzilla.redhat.com/show_bug.cgi?id=438721
https://bugzilla.redhat.com/show_bug.cgi?id=438724
https://bugzilla.redhat.com/show_bug.cgi?id=438730
http://www.nessus.org/u?124ff337
http://www.nessus.org/u?bc225e0f
http://www.nessus.org/u?5eb16446
http://www.nessus.org/u?9a7931b1
http://www.nessus.org/u?5b92e55b
http://www.nessus.org/u?d277b67b
http://www.nessus.org/u?0b464a5e
http://www.nessus.org/u?ba623227
http://www.nessus.org/u?d1dbbd22
http://www.nessus.org/u?bb511dd2
http://www.nessus.org/u?d5e13b73
http://www.nessus.org/u?b073bb58
http://www.nessus.org/u?f86540d4
http://www.nessus.org/u?991ecef2
http://www.nessus.org/u?97326ca9
http://www.nessus.org/u?453f0aee

Solution :

Update the affected packages.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.1
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: Fedora Local Security Checks

Nessus Plugin ID: 31691 (fedora_2008-2682.nasl)

Bugtraq ID: 28448

CVE ID: CVE-2008-1233
CVE-2008-1234
CVE-2008-1235
CVE-2008-1236
CVE-2008-1237
CVE-2008-1238
CVE-2008-1241

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now