Lucene search
Copyright (C) 2021 Greenbone AGOPENVAS:13614125623121201421HistoryNov 11, 2021 - 12:00 a.m.
Mozilla Firefox Security Advisory (MFSA2014-21) - Deprecated
2021-11-1100:00:00
Copyright (C) 2021 Greenbone AG
plugins.openvas.org
3
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
9.7 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
56.3%
This host is missing a security update for Mozilla Firefox.
This VT has been deprecated and is therefore no longer functional.
# SPDX-FileCopyrightText: 2021 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.2.1.2014.21");
script_cve_id("CVE-2014-1501");
script_tag(name:"creation_date", value:"2021-11-11 09:42:47 +0000 (Thu, 11 Nov 2021)");
script_version("2024-04-04T05:05:25+0000");
script_tag(name:"last_modification", value:"2024-04-04 05:05:25 +0000 (Thu, 04 Apr 2024)");
script_tag(name:"cvss_base", value:"5.8");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:P/A:N");
script_name("Mozilla Firefox Security Advisory (MFSA2014-21) - Deprecated");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2021 Greenbone AG");
script_family("General");
script_xref(name:"Advisory-ID", value:"MFSA2014-21");
script_xref(name:"URL", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2014-21/");
script_xref(name:"URL", value:"https://bugzilla.mozilla.org/show_bug.cgi?id=960135");
script_tag(name:"summary", value:"This host is missing a security update for Mozilla Firefox.
This VT has been deprecated and is therefore no longer functional.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"Local file access via Open Link in new tab
Security researcher Alex Infuhr reported that on
Firefox for Android it is possible to open links to local files from web content
by selecting 'Open Link in New Tab' from the context menu using the
file: protocol. The web content would have to know the precise
location of a malicious local file in order to exploit this issue. This issue
does not affect Firefox on non-Android systems.");
script_tag(name:"affected", value:"Firefox version(s) below 28.");
script_tag(name:"solution", value:"The vendor has released an update. Please see the reference(s) for more information.");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"executable_version_unreliable");
script_tag(name:"deprecated", value:TRUE);
exit(0);
}
exit(66);
Related
prion
prion
Design/Logic Flaw
2014-03-19 10:55:00
ubuntucve
ubuntucve
CVE-2014-1501
2014-03-19 00:00:00
nvd
nvd
CVE-2014-1501
2014-03-19 10:55:06
cvelist
cvelist
CVE-2014-1501
2014-03-19 10:00:00
cve
cve
CVE-2014-1501
2014-03-19 10:55:06
mozilla
mozilla
Local file access via Open Link in new tab — Mozilla
2014-03-18 00:00:00
nessus
nessus
Mozilla Firefox for Android < 28.0 Multiple Vulnerabilities
2014-03-26 00:00:00
SuSE 11.3 Security Update : MozillaFirefox (SAT Patch Number 9049)
2014-03-22 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2014:0418-1)
2021-06-09 00:00:00
SUSE: Security Advisory for MozillaFirefox (SUSE-SU-2014:0418-1)
2015-10-13 00:00:00
suse
suse
Security update for MozillaFirefox (important)
2014-03-21 23:04:18
freebsd
freebsd
mozilla -- multiple vulnerabilities
2014-03-19 00:00:00
securityvulns
securityvulns
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
9.7 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
56.3%
Related for OPENVAS:13614125623121201421