Mozilla Firefox < 50.0 Multiple Vulnerabilities (macOS)

This script is Copyright (C) 2016 Tenable Network Security, Inc.


Synopsis :

The remote macOS or Mac OS X host contains a web browser that is
affected by multiple vulnerabilities.

Description :

The version of Mozilla Firefox installed on the remote macOS or Mac
OS X host is prior to 50.0. It is, therefore, affected by multiple
vulnerabilities, the majority of which are remote code execution
vulnerabilities. An unauthenticated, remote attacker can exploit these
vulnerabilities by convincing a user to visit a specially crafted
website, resulting in the execution of arbitrary code in the context
of the current user.

See also :

https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/

Solution :

Upgrade to Mozilla Firefox version 50.0 or later.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.3
(CVSS2#E:POC/RL:OF/RC:ND)
Public Exploit Available : true

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now