Slackware 11.0 / 12.0 : firefox (SSA:2007-213-01)

high Nessus Plugin ID 25831

Synopsis

The remote Slackware host is missing a security update.

Description

New mozilla-firefox packages are available for Slackware 11.0 and 12.0 to fix security issues. Note that Firefox 1.5.x has reached its EOL (end of life) and is no longer being updated by mozilla.com. Users of Firefox 1.5.x are encouraged to upgrade to Firefox 2.x. Since we use the official Firefox binaries, these packages should work equally well on earlier Slackware systems.

Solution

Update the affected mozilla-firefox package.

See Also

http://www.nessus.org/u?3462ca90

http://www.nessus.org/u?2d16b39e

Plugin Details

Severity: High

ID: 25831

File Name: Slackware_SSA_2007-213-01.nasl

Version: 1.15

Type: local

Published: 8/2/2007

Updated: 1/14/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Critical

Score: 9.4

CVSS v2

Risk Factor: High

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/o:slackware:slackware_linux:12.0, p-cpe:/a:slackware:slackware_linux:mozilla-firefox, cpe:/o:slackware:slackware_linux:11.0

Required KB Items: Host/local_checks_enabled, Host/Slackware/release, Host/Slackware/packages

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 8/1/2007

Reference Information

CVE: CVE-2007-3844, CVE-2007-3845

SSA: 2007-213-01