Language:
Severity: Critical
ID: 73084
File Name: centos_RHSA-2014-0310.nasl
Version: 1.30
Type: local
Agent: unix
Family: CentOS Local Security Checks
Published: 3/19/2014
Updated: 1/4/2021
Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus
Risk Factor: Critical
Score: 9.5
Risk Factor: Critical
Base Score: 10
Temporal Score: 8.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2014-1493
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 9.4
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
CPE: cpe:/o:centos:centos:6, cpe:/o:centos:centos:5, p-cpe:/a:centos:centos:firefox
Required KB Items: Host/local_checks_enabled, Host/CentOS/release, Host/CentOS/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 3/19/2014
Vulnerability Publication Date: 3/19/2014
Metasploit (Firefox WebIDL Privileged Javascript Injection)
CVE: CVE-2014-1493, CVE-2014-1497, CVE-2014-1505, CVE-2014-1508, CVE-2014-1509, CVE-2014-1510, CVE-2014-1511, CVE-2014-1512, CVE-2014-1513, CVE-2014-1514
BID: 66203, 66206, 66207, 66240, 66425
RHSA: 2014:0310