SuSE 11.2 Security Update : Mozilla Firefox (SAT Patch Number 7464)

High Nessus Plugin ID 65596


The remote SuSE 11 host is missing one or more security updates.


Mozilla Firefox has been updated to the 17.0.4ESR release which fixes one important security issue :

- VUPEN Security, via TippingPoint's Zero Day Initiative, reported a use-after-free within the HTML editor when content script is run by the document.execCommand() function while internal editor operations are occurring.
This could allow for arbitrary code execution. (MFSA 2013-29 / CVE-2013-0787)


Apply SAT patch number 7464.

See Also

Plugin Details

Severity: High

ID: 65596

File Name: suse_11_firefox-201303-130311.nasl

Version: $Revision: 1.8 $

Type: local

Agent: unix

Published: 2013/03/17

Modified: 2013/10/25

Dependencies: 12634

Risk Information

Risk Factor: High


Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:novell:suse_linux:11:MozillaFirefox, p-cpe:/a:novell:suse_linux:11:MozillaFirefox-translations, cpe:/o:novell:suse_linux:11

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 2013/03/11

Reference Information

CVE: CVE-2013-0787