Mozilla Firefox < 220.127.116.11 Multiple Vulnerabilities
Medium Nessus Network Monitor Plugin ID 3405
SynopsisThe remote host has a web browser installed that is vulnerable to multiple attack vectors.
DescriptionVersions of Mozilla Firefox prior to 18.104.22.168 are reported to be prone to a cross-domain scripting flaw. An attacker exploiting this flaw would need to be able to convince a user to browse to a malicious URI. Successful exploitation would result in the attacker executing malicious script code within the Firefox browser. In addition, the remote browser is vulnerable to a memory corruption and authentication bypass flaw. An attacker exploiting these flaws would be able to execute arbitrary code on the remote browser or gain access to critical functions.
SolutionUpgrade to version 22.214.171.124 or higher.