FreeBSD : mozilla -- corrupt JIT state after deep return from native function (c1ef9b33-72a6-11de-82ea-0030843d3802)

This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

Mozilla Project reports :

Firefox user zbyte reported a crash that we determined could result in
an exploitable memory corruption problem. In certain cases after a
return from a native function, such as escape(), the Just-in-Time
(JIT) compiler could get into a corrupt state. This could be exploited
by an attacker to run arbitrary code such as installing malware.

This vulnerability does not affect earlier versions of Firefox which
do not support the JIT feature.

See also :

http://www.mozilla.org/security/announce/2009/mfsa2009-41.html
http://www.nessus.org/u?9d8c1a7f

Solution :

Update the affected package.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
Public Exploit Available : true

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 39867 (freebsd_pkg_c1ef9b3372a611de82ea0030843d3802.nasl)

Bugtraq ID:

CVE ID: CVE-2009-2477

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now