Alert GCSA-09119 - Vulnerabilita' in Mozilla Firefox 3.5.x
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-09119
Data : 16 dicembre 2009
Titolo : Vulnerabilita' in Mozilla Firefox 3.5.x
******************************************************************
:: Descrizione del problema
Mozilla ha pubblicato un security advisory relativo a varie
vulnerabilita' presenti nel browser Firefox.
:: Piattaforme e Software interessati
Firefox 3.5.4 e precedenti
:: Impatto
Esecuzione remota di codice arbitrario
Bypass dei controlli di sicurezza
Compromissione del sistema
Esposizione di informazioni sensibili
:: Soluzione
Aggiornare Firefox alla versione 3.5.6
http://www.mozilla.com/en-US/firefox/all.html
http://www.mozilla.com/en-US/firefox/
:: Riferimenti
Mozilla Foundation Security Advisories
http://www.mozilla.org/security/announce/
Known Vulnerabilities in Mozilla Firefox 3.5
http://www.mozilla.org/security/known-vulnerabilities/firefox35.html
Mitre's CVE ID
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3389
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3388
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3987
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3986
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3985
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3984
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3983
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3982
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3981
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3980
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3979
Secunia
http://secunia.com/advisories/37699/
-----BEGIN PGP SIGNATURE-----
iQCVAwUBSyi4hvOB+SpikaiRAQIeSQP9HdCme/YjeM53HS+ouKcgZsBX4N9MmK45
kp1fzOH5Vl6SDGBGTvEywbD9z3VsN22k4jWPRxLCQVjSqmG3sY2KY5oZQwJo9qMC
LilStuW2wymL/xlcuH7DEuhLkGIxa/XORkI0oxm6swr6v253tsxsIJteblql4nHV
7BTSzOG9bqY=
=i0Tp
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-09119
Data : 16 dicembre 2009
Titolo : Vulnerabilita' in Mozilla Firefox 3.5.x
******************************************************************
:: Descrizione del problema
Mozilla ha pubblicato un security advisory relativo a varie
vulnerabilita' presenti nel browser Firefox.
:: Piattaforme e Software interessati
Firefox 3.5.4 e precedenti
:: Impatto
Esecuzione remota di codice arbitrario
Bypass dei controlli di sicurezza
Compromissione del sistema
Esposizione di informazioni sensibili
:: Soluzione
Aggiornare Firefox alla versione 3.5.6
http://www.mozilla.com/en-US/firefox/all.html
http://www.mozilla.com/en-US/firefox/
:: Riferimenti
Mozilla Foundation Security Advisories
http://www.mozilla.org/security/announce/
Known Vulnerabilities in Mozilla Firefox 3.5
http://www.mozilla.org/security/known-vulnerabilities/firefox35.html
Mitre's CVE ID
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3389
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3388
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3987
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3986
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3985
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3984
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3983
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3982
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3981
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3980
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3979
Secunia
http://secunia.com/advisories/37699/
-----BEGIN PGP SIGNATURE-----
iQCVAwUBSyi4hvOB+SpikaiRAQIeSQP9HdCme/YjeM53HS+ouKcgZsBX4N9MmK45
kp1fzOH5Vl6SDGBGTvEywbD9z3VsN22k4jWPRxLCQVjSqmG3sY2KY5oZQwJo9qMC
LilStuW2wymL/xlcuH7DEuhLkGIxa/XORkI0oxm6swr6v253tsxsIJteblql4nHV
7BTSzOG9bqY=
=i0Tp
-----END PGP SIGNATURE-----