Fedora 10 : Miro-2.0.5-3.fc10 / blam-1.8.5-13.fc10 / epiphany-2.24.3-9.fc10 / etc (2009-8288)

This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.


Synopsis :

The remote Fedora host is missing one or more security updates.

Description :

Update to new upstream Firefox version 3.0.13, fixing multiple
security issues detailed in the upstream advisories:
http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#f
irefox3.0.13 Update also includes all packages depending on gecko-libs
rebuilt against new version of Firefox / XULRunner. Note: Issues
described in MFSA 2009-42 and MFSA 2009-43 were previously addressed
via rebase of the NSS packages.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

http://www.nessus.org/u?16c75bf6
http://www.nessus.org/u?ef9c9c85
http://www.nessus.org/u?05980972
http://www.nessus.org/u?f685d331
http://www.nessus.org/u?0354abc1
http://www.nessus.org/u?6395dd56
http://www.nessus.org/u?bbdcae2b
http://www.nessus.org/u?9be5bde1
http://www.nessus.org/u?a3d352de
http://www.nessus.org/u?c0dc362f
http://www.nessus.org/u?c39c5a31
http://www.nessus.org/u?82b08faf
http://www.nessus.org/u?fbd84d7b
http://www.nessus.org/u?8a467d30
http://www.nessus.org/u?d1cf19a6
http://www.nessus.org/u?c0d1aa1b
http://www.nessus.org/u?e7987091
http://www.nessus.org/u?2ec59fd1

Solution :

Update the affected packages.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.7
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: Fedora Local Security Checks

Nessus Plugin ID: 40484 (fedora_2009-8288.nasl)

Bugtraq ID: 35803
35927
35928

CVE ID: CVE-2009-2470
CVE-2009-2654
CVE-2009-2662
CVE-2009-2663
CVE-2009-2664
CVE-2009-2665

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now