Severity: High
ID: 20544
File Name: ubuntu_USN-149-1.nasl
Version: 1.23
Type: Local
Agent: unix
Family: Ubuntu Local Security Checks
Published: 1/15/2006
Updated: 1/19/2021
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Continuous Assessment, Tenable Cloud Security, Tenable Self-Hosted Container Security, Nessus
Risk Factor: High
Score: 7.7
Percentile: 99.19
Risk Factor: High
Base Score: 7.5
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CPE: p-cpe:/a:canonical:ubuntu_linux:mozilla-firefox-dev, cpe:/o:canonical:ubuntu_linux:5.04, p-cpe:/a:canonical:ubuntu_linux:mozilla-firefox, p-cpe:/a:canonical:ubuntu_linux:mozilla-firefox-gnome-support, p-cpe:/a:canonical:ubuntu_linux:mozilla-firefox-dom-inspector
Required KB Items: Host/cpu, Host/Debian/dpkg-l, Host/Ubuntu, Host/Ubuntu/release
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 7/21/2005
Metasploit (Mozilla Suite/Firefox compareTo() Code Execution)
CVE: CVE-2004-0718, CVE-2005-1937, CVE-2005-2260, CVE-2005-2261, CVE-2005-2263, CVE-2005-2264, CVE-2005-2265, CVE-2005-2266, CVE-2005-2267, CVE-2005-2268, CVE-2005-2269, CVE-2005-2270
USN: 149-1