Detections
Analytics

SuSE 10 Security Update : MozillaFirefox (ZYPP Patch Number 5450)

high Nessus Plugin ID 33757

Synopsis

The remote SuSE 10 host is missing a security-related patch.

Description

MozillaFirefox was updated to version 2.0.0.16, which fixes various bugs and following security issues :

 - An anonymous researcher, via TippingPoint's Zero Day Initiative program, reported a vulnerability in Mozilla CSS reference counting code. The vulnerability was caused by an insufficiently sized variable being used as a reference counter for CSS objects. By creating a very large number of references to a common CSS object, this counter could be overflowed which could cause a crash when the browser attempts to free the CSS object while still in use. An attacker could use this crash to run arbitrary code on the victim's computer. (MFSA 2008-34 / CVE-2008-2785)

 - Security researcher Billy Rios reported that if Firefox is not already running, passing it a command-line URI with pipe symbols will open multiple tabs. This URI splitting could be used to launch privileged chrome:
 URIs from the command-line, a partial bypass of the fix for MFSA 2005-53 which blocks external applications from loading such URIs. This vulnerability could also be used by an attacker to launch a file: URI from the command line opening a malicious local file which could exfiltrate data from the local filesystem. Combined with a vulnerability which allows an attacker to inject code into a chrome document, the above issue could be used to run arbitrary code on a victim's computer. Such a chrome injection vulnerability was reported by Mozilla developers Ben Turner and Dan Veditz who showed that a XUL based SSL error page was not properly sanitizing inputs and could be used to run arbitrary code with chrome privileges. (MFSA 2008-35 / CVE-2008-2933)

Solution

Apply ZYPP patch number 5450.

See Also

https://www.mozilla.org/en-US/security/advisories/mfsa2005-53/

https://www.mozilla.org/en-US/security/advisories/mfsa2008-34/

https://www.mozilla.org/en-US/security/advisories/mfsa2008-35/

http://support.novell.com/security/cve/CVE-2008-2785.html

http://support.novell.com/security/cve/CVE-2008-2933.html

Plugin Details

Severity: High

ID: 33757

File Name: suse_MozillaFirefox-5450.nasl

Version: 1.20

Type: local

Agent: unix

Published: 7/29/2008

Updated: 1/14/2021

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/o:suse:suse_linux

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 7/17/2008

Vulnerability Publication Date: 6/19/2008

Reference Information

CVE: CVE-2008-2785, CVE-2008-2933

CWE: 189, 20