Mozilla Firefox < 1.7.12 Multiple Vulnerabilities
high Nessus Network Monitor Plugin ID 3238
Synopsis
The remote host has a web browser installed that is vulnerable to multiple attack vectors.Description
Versions of Mozilla Firefox prior to 1.7.12 are affected by various security issues, several of which are critical as they can be easily exploited to execute arbitrary shell code on the remote host.Solution
Upgrade to Firefox 1.7.12 or later.See Also
http://security-protocols.com/advisory/sp-x17-advisory.txt
http://www.mozilla.org/security/idn.html
http://www.mozilla.org/security/announce/2005/mfsa2005-58.html
Plugin Details
Severity: High
ID: 3238
Family: Web Clients
Published: 9/23/2005
Updated: 3/6/2019
Nessus ID: 19718
Risk Information
CVSS v2
Risk Factor: Medium
Base Score: 6.8
Temporal Score: 5.9
Vector: CVSS2#AV:A/AC:H/Au:N/C:C/I:C/A:C
Temporal Vector: CVSS2#E:H/RL:OF/RC:C
CVSS v3
Risk Factor: High
Base Score: 7.5
Temporal Score: 7.2
Vector: CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
Vulnerability Information
CPE: cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
Reference Information
CVE: CVE-2004-0597, CVE-2004-0599, CVE-2004-0718, CVE-2004-0722, CVE-2004-0757, CVE-2004-0758, CVE-2004-0759, CVE-2004-0760, CVE-2004-0761, CVE-2004-0762, CVE-2004-0763, CVE-2004-0764, CVE-2005-0989, CVE-2005-1153, CVE-2005-1154, CVE-2005-1155, CVE-2005-1156, CVE-2005-1157, CVE-2005-1159, CVE-2005-1160, CVE-2005-0399, CVE-2005-1476, CVE-2005-1477, CVE-2005-1531, CVE-2005-1532, CVE-2005-2871, CVE-2005-2701, CVE-2005-2702, CVE-2005-2703, CVE-2005-2704, CVE-2005-2705, CVE-2005-2706, CVE-2005-2707, CVE-2005-2968, CVE-2005-3089, CVE-2005-2602
BID: 15495, 14916, 14917, 14918, 14919, 14920, 14921, 14923, 14924, 14526, 14784