Mozilla Firefox < 1.7.12 Multiple Vulnerabilities
medium Nessus Network Monitor Plugin ID 3238
Synopsis
The remote host has a web browser installed that is vulnerable to multiple attack vectors.Description
Versions of Mozilla Firefox prior to 1.7.12 are affected by various security issues, several of which are critical as they can be easily exploited to execute arbitrary shell code on the remote host.Solution
Upgrade to Firefox 1.7.12 or later.See Also
http://security-protocols.com/advisory/sp-x17-advisory.txt
http://www.mozilla.org/security/idn.html
http://www.mozilla.org/security/announce/2005/mfsa2005-58.html
Plugin Details
Severity: Medium
ID: 3238
Family: Web Clients
Published: 9/23/2005
Updated: 3/6/2019
Dependencies: 9131
Nessus ID: 19718
Risk Information
Risk Factor: Medium
CVSS v2.0
Base Score: 6.8
Temporal Score: 5.9
Vector: CVSS2#AV:A/AC:H/Au:N/C:C/I:C/A:C
Temporal Vector: CVSS2#E:H/RL:OF/RC:C
CVSS v3.0
Base Score: 7.5
Temporal Score: 7.2
Vector: CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
Vulnerability Information
CPE: cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
Reference Information
CVE: CVE-2004-0597, CVE-2004-0599, CVE-2004-0718, CVE-2004-0722, CVE-2004-0757, CVE-2004-0758, CVE-2004-0759, CVE-2004-0760, CVE-2004-0761, CVE-2004-0762, CVE-2004-0763, CVE-2004-0764, CVE-2005-0989, CVE-2005-1153, CVE-2005-1154, CVE-2005-1155, CVE-2005-1156, CVE-2005-1157, CVE-2005-1159, CVE-2005-1160, CVE-2005-0399, CVE-2005-1476, CVE-2005-1477, CVE-2005-1531, CVE-2005-1532, CVE-2005-2871, CVE-2005-2701, CVE-2005-2702, CVE-2005-2703, CVE-2005-2704, CVE-2005-2705, CVE-2005-2706, CVE-2005-2707, CVE-2005-2968, CVE-2005-3089, CVE-2005-2602
BID: 15495, 14916, 14917, 14918, 14919, 14920, 14921, 14923, 14924, 14526, 14784