Lucene search
This script is Copyright (C) 2014-2022 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2013-555.NASLHistoryJun 13, 2014 - 12:00 a.m.
openSUSE Security Update : xulrunner (openSUSE-SU-2013:1143-1)
2014-06-1300:00:00
This script is Copyright (C) 2014-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
16
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.13 Low
EPSS
Percentile
95.5%
Mozilla xulrunner was update to 17.0.7esr (bnc#825935)
Security issues fixed :
-
MFSA 2013-49/CVE-2013-1682 Miscellaneous memory safety hazards
-
MFSA 2013-50/CVE-2013-1684/CVE-2013-1685/CVE-2013-1686 Memory corruption found using Address Sanitizer
-
MFSA 2013-51/CVE-2013-1687 (bmo#863933, bmo#866823) Privileged content access and execution via XBL
-
MFSA 2013-53/CVE-2013-1690 (bmo#857883) Execution of unmapped memory through onreadystatechange event
-
MFSA 2013-54/CVE-2013-1692 (bmo#866915) Data in the body of XHR HEAD requests leads to CSRF attacks
-
MFSA 2013-55/CVE-2013-1693 (bmo#711043) SVG filters can lead to information disclosure
-
MFSA 2013-56/CVE-2013-1694 (bmo#848535) PreserveWrapper has inconsistent behavior
-
MFSA 2013-59/CVE-2013-1697 (bmo#858101) XrayWrappers can be bypassed to run user defined methods in a privileged context
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2013-555.
#
# The text description of this plugin is (C) SUSE LLC.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(75072);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2022/03/29");
script_cve_id(
"CVE-2013-1682",
"CVE-2013-1684",
"CVE-2013-1685",
"CVE-2013-1686",
"CVE-2013-1687",
"CVE-2013-1690",
"CVE-2013-1692",
"CVE-2013-1693",
"CVE-2013-1694",
"CVE-2013-1697"
);
script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/04/18");
script_name(english:"openSUSE Security Update : xulrunner (openSUSE-SU-2013:1143-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote openSUSE host is missing a security update.");
script_set_attribute(attribute:"description", value:
"Mozilla xulrunner was update to 17.0.7esr (bnc#825935)
Security issues fixed :
- MFSA 2013-49/CVE-2013-1682 Miscellaneous memory safety
hazards
- MFSA 2013-50/CVE-2013-1684/CVE-2013-1685/CVE-2013-1686
Memory corruption found using Address Sanitizer
- MFSA 2013-51/CVE-2013-1687 (bmo#863933, bmo#866823)
Privileged content access and execution via XBL
- MFSA 2013-53/CVE-2013-1690 (bmo#857883) Execution of
unmapped memory through onreadystatechange event
- MFSA 2013-54/CVE-2013-1692 (bmo#866915) Data in the body
of XHR HEAD requests leads to CSRF attacks
- MFSA 2013-55/CVE-2013-1693 (bmo#711043) SVG filters can
lead to information disclosure
- MFSA 2013-56/CVE-2013-1694 (bmo#848535) PreserveWrapper
has inconsistent behavior
- MFSA 2013-59/CVE-2013-1697 (bmo#858101) XrayWrappers can
be bypassed to run user defined methods in a privileged
context");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.novell.com/show_bug.cgi?id=825935");
script_set_attribute(attribute:"see_also", value:"https://lists.opensuse.org/opensuse-updates/2013-07/msg00019.html");
script_set_attribute(attribute:"solution", value:
"Update the affected xulrunner packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"exploited_by_malware", value:"true");
script_set_attribute(attribute:"metasploit_name", value:'Firefox onreadystatechange Event DocumentViewerImpl Use After Free');
script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
script_set_attribute(attribute:"patch_publication_date", value:"2013/06/26");
script_set_attribute(attribute:"plugin_publication_date", value:"2014/06/13");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mozilla-js");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mozilla-js-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mozilla-js-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mozilla-js-debuginfo-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xulrunner");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xulrunner-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xulrunner-buildsymbols");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xulrunner-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xulrunner-debuginfo-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xulrunner-debugsource");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xulrunner-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xulrunner-devel-debuginfo");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:12.2");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:12.3");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"SuSE Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2014-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE12\.2|SUSE12\.3)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "12.2 / 12.3", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);
flag = 0;
if ( rpm_check(release:"SUSE12.2", reference:"mozilla-js-17.0.7-2.46.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", reference:"mozilla-js-debuginfo-17.0.7-2.46.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", reference:"xulrunner-17.0.7-2.46.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", reference:"xulrunner-buildsymbols-17.0.7-2.46.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", reference:"xulrunner-debuginfo-17.0.7-2.46.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", reference:"xulrunner-debugsource-17.0.7-2.46.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", reference:"xulrunner-devel-17.0.7-2.46.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", reference:"xulrunner-devel-debuginfo-17.0.7-2.46.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", cpu:"x86_64", reference:"mozilla-js-32bit-17.0.7-2.46.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", cpu:"x86_64", reference:"mozilla-js-debuginfo-32bit-17.0.7-2.46.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", cpu:"x86_64", reference:"xulrunner-32bit-17.0.7-2.46.1") ) flag++;
if ( rpm_check(release:"SUSE12.2", cpu:"x86_64", reference:"xulrunner-debuginfo-32bit-17.0.7-2.46.1") ) flag++;
if ( rpm_check(release:"SUSE12.3", reference:"mozilla-js-17.0.7-1.20.1") ) flag++;
if ( rpm_check(release:"SUSE12.3", reference:"mozilla-js-debuginfo-17.0.7-1.20.1") ) flag++;
if ( rpm_check(release:"SUSE12.3", reference:"xulrunner-17.0.7-1.20.1") ) flag++;
if ( rpm_check(release:"SUSE12.3", reference:"xulrunner-buildsymbols-17.0.7-1.20.1") ) flag++;
if ( rpm_check(release:"SUSE12.3", reference:"xulrunner-debuginfo-17.0.7-1.20.1") ) flag++;
if ( rpm_check(release:"SUSE12.3", reference:"xulrunner-debugsource-17.0.7-1.20.1") ) flag++;
if ( rpm_check(release:"SUSE12.3", reference:"xulrunner-devel-17.0.7-1.20.1") ) flag++;
if ( rpm_check(release:"SUSE12.3", reference:"xulrunner-devel-debuginfo-17.0.7-1.20.1") ) flag++;
if ( rpm_check(release:"SUSE12.3", cpu:"x86_64", reference:"mozilla-js-32bit-17.0.7-1.20.1") ) flag++;
if ( rpm_check(release:"SUSE12.3", cpu:"x86_64", reference:"mozilla-js-debuginfo-32bit-17.0.7-1.20.1") ) flag++;
if ( rpm_check(release:"SUSE12.3", cpu:"x86_64", reference:"xulrunner-32bit-17.0.7-1.20.1") ) flag++;
if ( rpm_check(release:"SUSE12.3", cpu:"x86_64", reference:"xulrunner-debuginfo-32bit-17.0.7-1.20.1") ) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "xulrunner");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | opensuse | mozilla-js | p-cpe:/a:novell:opensuse:mozilla-js |
| novell | opensuse | mozilla-js-32bit | p-cpe:/a:novell:opensuse:mozilla-js-32bit |
| novell | opensuse | mozilla-js-debuginfo | p-cpe:/a:novell:opensuse:mozilla-js-debuginfo |
| novell | opensuse | mozilla-js-debuginfo-32bit | p-cpe:/a:novell:opensuse:mozilla-js-debuginfo-32bit |
| novell | opensuse | xulrunner | p-cpe:/a:novell:opensuse:xulrunner |
| novell | opensuse | xulrunner-32bit | p-cpe:/a:novell:opensuse:xulrunner-32bit |
| novell | opensuse | xulrunner-buildsymbols | p-cpe:/a:novell:opensuse:xulrunner-buildsymbols |
| novell | opensuse | xulrunner-debuginfo | p-cpe:/a:novell:opensuse:xulrunner-debuginfo |
| novell | opensuse | xulrunner-debuginfo-32bit | p-cpe:/a:novell:opensuse:xulrunner-debuginfo-32bit |
| novell | opensuse | xulrunner-debugsource | p-cpe:/a:novell:opensuse:xulrunner-debugsource |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1682
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1684
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1685
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1686
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1687
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1690
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1692
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1693
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1694
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1697
bugzilla.novell.com/show_bug.cgi?id=825935
lists.opensuse.org/opensuse-updates/2013-07/msg00019.html
Related
nessus
nessus
openSUSE Security Update : MozillaThunderbird (openSUSE-SU-2013:1141-1)
2014-06-13 00:00:00
RHEL 5 / 6 : thunderbird (RHSA-2013:0982)
2013-06-26 00:00:00
Firefox ESR 17.x < 17.0.7 Multiple Vulnerabilities
2013-06-26 00:00:00
openvas
openvas
Mozilla Thunderbird ESR Multiple Vulnerabilities - June 13 (Windows)
2013-06-26 00:00:00
Debian Security Advisory DSA 2716-1 (iceweasel - several vulnerabilities)
2013-06-26 00:00:00
Mozilla Firefox ESR Multiple Vulnerabilities (Jun 2013) - Mac OS X
2013-06-26 00:00:00
mageia
mageia
Updated Firefox and Thunderbird packages fix multiple vulnerabilities
2013-06-26 22:45:58
veracode
veracode
Use-After-Free
2019-05-02 04:45:43
Arbitrary Code Execution
2019-05-02 04:45:43
Same-Origin Policy Bypass
2019-05-02 04:45:44
redhat
redhat
(RHSA-2013:0982) Important: thunderbird security update
2013-06-25 00:00:00
(RHSA-2013:0981) Critical: firefox security update
2013-06-25 00:00:00
suse
suse
xulrunner: 17.0.7esr (important)
2013-07-04 12:04:46
MozillaThunderbird: 17.0.7 (important)
2013-07-04 12:04:15
Security update for Mozilla Firefox (important)
2013-07-05 22:04:18
oraclelinux
oraclelinux
firefox security update
2013-06-25 00:00:00
thunderbird security update
2013-06-25 00:00:00
centos
centos
firefox, xulrunner security update
2013-06-26 02:19:59
thunderbird security update
2013-06-26 02:19:42
debian
debian
[SECURITY] [DSA 2720-1] icedove security update
2013-07-06 15:37:08
[SECURITY] [DSA 2716-1] iceweasel security update
2013-06-26 14:00:40
ubuntu
ubuntu
Thunderbird vulnerabilities
2013-06-26 00:00:00
Firefox regression
2013-07-03 00:00:00
Firefox vulnerabilities
2013-06-26 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2013-06-25 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2013-07-01 00:00:00
mozilla
mozilla
Memory corruption found using Address Sanitizer β Mozilla
2013-06-25 00:00:00
Data in the body of XHR HEAD requests leads to CSRF attacks β Mozilla
2013-06-25 00:00:00
SVG filters can lead to information disclosure β Mozilla
2013-06-25 00:00:00
ibm
ibm
nvd
nvd
prion
prion
Cross site request forgery (csrf)
2013-06-26 03:19:00
Design/Logic Flaw
2013-06-26 03:19:00
Memory corruption
2013-06-26 03:19:00
ubuntucve
ubuntucve
cve
cve
cvelist
cvelist
saint
saint
Mozilla Firefox onreadystatechange Event Use After Free
2013-08-22 00:00:00
Mozilla Firefox onreadystatechange Event Use After Free
2013-08-22 00:00:00
Mozilla Firefox onreadystatechange Event Use After Free
2013-08-22 00:00:00
attackerkb
attackerkb
CVE-2013-1690
2013-06-26 00:00:00
zdt
zdt
Firefox onreadystatechange Event DocumentViewerImpl Use After Free
2013-08-08 00:00:00
packetstorm
packetstorm
Firefox onreadystatechange Event DocumentViewerImpl Use After Free
2013-08-08 00:00:00
checkpoint_advisories
checkpoint_advisories
Mozilla Firefox onreadystatechange Use After Free (CVE-2013-1690)
2013-09-01 00:00:00
seebug
seebug
Mozilla Firefox JavaScriptθΏη¨δ»£η ζ§θ‘ζΌζ΄
2013-08-11 00:00:00
cisa_kev
cisa_kev
Mozilla Firefox and Thunderbird Denial-of-Service Vulnerability
2022-03-28 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.13 Low
EPSS
Percentile
95.5%
Related for OPENSUSE-2013-555.NASL