SuSE 11 Security Update : XULRunner (SAT Patch Number 1716)

This script is Copyright (C) 2009-2013 Tenable Network Security, Inc.

Synopsis :

The remote SuSE 11 host is missing one or more security updates.

Description :

The Mozilla XULRunner engine was updated to version, fixing
lots of bugs and various security issues.

The following issues were fixed :

- Crashes with evidence of memory corruption (
(MFSA 2009-65 / CVE-2009-3979 / CVE-2009-3981)

- (bmo#487872) NTLM reflection vulnerability. (MFSA
2009-68 / CVE-2009-3983)

- (bmo#521461,bmo#514232) Location bar spoofing
vulnerabilities. (MFSA 2009-69 / CVE-2009-3984 /

- (bmo#522430) Privilege escalation via chrome
window.opener. (MFSA 2009-70 / CVE-2009-3986)

See also :

Solution :

Apply SAT patch number 1716.

Risk factor :

High / CVSS Base Score : 9.3

Family: SuSE Local Security Checks

Nessus Plugin ID: 43388 ()

Bugtraq ID:

CVE ID: CVE-2009-3979

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now