Scientific Linux Security Update : firefox on SL4.x, SL5.x i386/x86_64
Critical Nessus Plugin ID 60538
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionSeveral flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox.
(CVE-2009-0040, CVE-2009-0771, CVE-2009-0772, CVE-2009-0773, CVE-2009-0774,CVE-2009-0775)
Several flaws were found in the way malformed content was processed. A website containing specially crafted content could, potentially, trick a Firefox user into surrendering sensitive information.
After installing the update, Firefox must be restarted for the changes to take effect.
SolutionUpdate the affected packages.