Security

« Sun Alert 266908... | Main | Sun Alert 265908 A... »

13 Oct 2009 Sun Alert 268448 Multiple Security Vulnerabilities in Firefox Versions Before 3.5.3 May Allow Execution of Arbitrary Code, Access to Unauthorized Data, or Denial of Service (DoS)
posted by chandan in Alerts

Product: OpenSolaris

Multiple security vulnerabilities with varying impacts affect Firefox (see firefox(1)) versions prior to 3.5.3 as shipped with OpenSolaris. These vulnerabilities may allow an unprivileged remote user to crash the Firefox application or possibly execute arbitrary code on the system where Firefox is being run, resulting in a Denial of service (DoS). Further vulnerabilities may allow a remote user to mislead a Firefox user into incorrectly trusting a site by providing a URL in the location bar which may appear to be another URL, or to compromise the cryptography features that are active within the browser application.

The following Mozilla advisories describe the vulnerabilities:

MFSA 2009-51 at http://www.mozilla.org/security/announce/2009/mfsa2009-51.html
MFSA 2009-50 at http://www.mozilla.org/security/announce/2009/mfsa2009-50.html
MFSA 2009-49 at http://www.mozilla.org/security/announce/2009/mfsa2009-49.html
MFSA 2009-48 at http://www.mozilla.org/security/announce/2009/mfsa2009-48.html
MFSA 2009-47 at http://www.mozilla.org/security/announce/2009/mfsa2009-47.html

The following are the CVE identifiers that pertain to these security issues:

State: Resolved

First released: 30-Sep-2009

Sun Alert Link: http://sunsolve.sun.com/search/document.do?assetkey=1-66-268448-1

Permalink |

Comments: