SuSE 11.1 Security Update : Mozilla Firefox (SAT Patch Number 5429)

This script is Copyright (C) 2011-2013 Tenable Network Security, Inc.


Synopsis :

The remote SuSE 11 host is missing one or more security updates.

Description :

Mozilla Firefox has been updated to version 1.9.2.24 (bnc#728520) to
fix the following security issues :

- (bmo#680880) loadSubScript unwraps XPCNativeWrapper
scope parameter. (MFSA 2011-46 / CVE-2011-3647)

- (bmo#690225) Potential XSS against sites using
Shift-JIS. (MFSA 2011-47 / CVE-2011-3648)

- (bmo#674776) Memory corruption while profiling using
Firebug. (MFSA 2011-49 / CVE-2011-3650)

See also :

http://www.mozilla.org/security/announce/2011/mfsa2011-46.html
http://www.mozilla.org/security/announce/2011/mfsa2011-47.html
http://www.mozilla.org/security/announce/2011/mfsa2011-49.html
https://bugzilla.novell.com/show_bug.cgi?id=726096
https://bugzilla.novell.com/show_bug.cgi?id=728520
http://support.novell.com/security/cve/CVE-2011-2372.html
http://support.novell.com/security/cve/CVE-2011-2996.html
http://support.novell.com/security/cve/CVE-2011-2998.html
http://support.novell.com/security/cve/CVE-2011-2999.html
http://support.novell.com/security/cve/CVE-2011-3000.html
http://support.novell.com/security/cve/CVE-2011-3001.html
http://support.novell.com/security/cve/CVE-2011-3647.html
http://support.novell.com/security/cve/CVE-2011-3648.html
http://support.novell.com/security/cve/CVE-2011-3649.html
http://support.novell.com/security/cve/CVE-2011-3650.html
http://support.novell.com/security/cve/CVE-2011-3651.html
http://support.novell.com/security/cve/CVE-2011-3653.html
http://support.novell.com/security/cve/CVE-2011-3655.html

Solution :

Apply SAT patch number 5429.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now