Mozilla Firefox < 3.5.19 Multiple Vulnerabilities

High Nessus Network Monitor Plugin ID 5900

Synopsis

The remote host has a web browser installed that is vulnerable to multiple attack vectors.

Description

Versions of Firefox earlier than 3.5.19 are potentially affected by multiple vulnerabilities :

Multiple memory corruption issues could lead to arbitrary code execution. (MFSA2011-12)
- Multiple dangling pointer vulnerabilities exist. (MFSA2011-13)
- A Java applet could be used to mimic interaction with form autocomplete controls and steal entries from the form history. (MFSA2011-14)
- The Java Embedding Plugin (JEP) shipped with the Mac OS X versions of Firefox could be exploited to obtain elevated access to resources on a user's system. (MFSA2011-15)
- The 'resource: ' protocol could be exploited to allow directory traversal on Windows and the potential loading of resources from non-permitted locations. (MFSA2011-16)
- The XSLT 'generate-id()' function returns may return a string that reveals a specific valid address of an object on the memory heap. (MFSA2011-18)

Solution

Upgrade to Firefox 3.5.19 or later.

See Also

http://www.mozilla.org/security/known-vulnerabilities/firefox35.html#firefox3.5.19

http://www.mozilla.org/security/announce/2011/mfsa2011-12.html

http://www.mozilla.org/security/announce/2011/mfsa2011-13.html

http://www.mozilla.org/security/announce/2011/mfsa2011-14.html

http://www.mozilla.org/security/announce/2011/mfsa2011-15.html

http://www.mozilla.org/security/announce/2011/mfsa2011-16.html

Plugin Details

Severity: High

ID: 5900

File Name: 5900.prm

Family: Web Clients

Published: 2011/04/29

Modified: 2017/02/02

Dependencies: 9131

Nessus ID: 53593

Risk Information

Risk Factor: High

CVSSv2

Base Score: 9.3

Temporal Score: 7.7

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

CVSSv3

Base Score: 8.1

Temporal Score: 7.5

Vector: CVSS3#AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS3#E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:mozilla:firefox

Patch Publication Date: 2011/04/28

Vulnerability Publication Date: 2011/04/28

Exploitable With

CANVAS (White_Phosphorus)

Metasploit (Mozilla Firefox "nsTreeRange" Dangling Pointer Vulnerability)

Reference Information

CVE: CVE-2011-0065, CVE-2011-0066, CVE-2011-0067, CVE-2011-0069, CVE-2011-0070, CVE-2011-0071, CVE-2011-0072, CVE-2011-0073, CVE-2011-0074, CVE-2011-0075, CVE-2011-0076, CVE-2011-0077, CVE-2011-0078, CVE-2011-0080, CVE-2011-1202

BID: 47635, 47641, 47646, 47647, 47648, 47651, 47653, 47654, 47655, 47656, 47657, 47659, 47660, 47662, 47663, 47666, 47667, 47668

IAVA: 2013-A-0031