Language:
Severity: High
ID: 80548
File Name: ubuntu_USN-2458-1.nasl
Version: 1.20
Type: local
Agent: unix
Family: Ubuntu Local Security Checks
Published: 1/15/2015
Updated: 1/19/2021
Supported Sensors: Agentless Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent
Risk Factor: High
Score: 8.3
Risk Factor: High
Base Score: 7.5
Temporal Score: 6.5
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
Temporal Vector: CVSS2#E:H/RL:OF/RC:C
CPE: p-cpe:/a:canonical:ubuntu_linux:firefox, cpe:/o:canonical:ubuntu_linux:12.04:-:lts, cpe:/o:canonical:ubuntu_linux:14.04, cpe:/o:canonical:ubuntu_linux:14.10
Required KB Items: Host/cpu, Host/Ubuntu, Host/Ubuntu/release, Host/Debian/dpkg-l
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 1/14/2015
Vulnerability Publication Date: 1/14/2015
Metasploit (Firefox Proxy Prototype Privileged Javascript Injection)
CVE: CVE-2014-8634, CVE-2014-8635, CVE-2014-8636, CVE-2014-8637, CVE-2014-8638, CVE-2014-8639, CVE-2014-8640, CVE-2014-8641, CVE-2014-8642
BID: 72050, 72041, 72042, 72044, 72045, 72046, 72047, 72048, 72049
USN: 2458-1