|
 |
|
HP-UX update for firefox
|
|
|
|
|
Secunia Advisory:
|
SA22066
|
|
|
Release Date:
|
2006-09-22
|
|
Last Update:
|
2007-09-19
|
|
|
Critical:
|
Highly critical
|
|
Impact:
|
Cross Site Scripting
Spoofing
Exposure of sensitive information
DoS
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Partial Fix
|
|
| OS: | HP-UX 11.x
|
|
| | CVE reference: | CVE-2006-0748 (Secunia mirror)
CVE-2006-1529 (Secunia mirror)
CVE-2006-1530 (Secunia mirror)
CVE-2006-1531 (Secunia mirror)
CVE-2006-1723 (Secunia mirror)
CVE-2006-1724 (Secunia mirror)
CVE-2006-1725 (Secunia mirror)
CVE-2006-1726 (Secunia mirror)
CVE-2006-1727 (Secunia mirror)
CVE-2006-1728 (Secunia mirror)
CVE-2006-1730 (Secunia mirror)
CVE-2006-1942 (Secunia mirror)
CVE-2006-1993 (Secunia mirror)
CVE-2006-2775 (Secunia mirror)
CVE-2006-2776 (Secunia mirror)
CVE-2006-2777 (Secunia mirror)
CVE-2006-2778 (Secunia mirror)
CVE-2006-2779 (Secunia mirror)
CVE-2006-2780 (Secunia mirror)
CVE-2006-2782 (Secunia mirror)
CVE-2006-2783 (Secunia mirror)
CVE-2006-2784 (Secunia mirror)
CVE-2006-2785 (Secunia mirror)
CVE-2006-2786 (Secunia mirror)
CVE-2006-2787 (Secunia mirror)
CVE-2006-3113 (Secunia mirror)
CVE-2006-3677 (Secunia mirror)
CVE-2006-3801 (Secunia mirror)
CVE-2006-3802 (Secunia mirror)
CVE-2006-3803 (Secunia mirror)
CVE-2006-3805 (Secunia mirror)
CVE-2006-3806 (Secunia mirror)
CVE-2006-3807 (Secunia mirror)
CVE-2006-3808 (Secunia mirror)
CVE-2006-3809 (Secunia mirror)
CVE-2006-3810 (Secunia mirror)
CVE-2006-3811 (Secunia mirror)
CVE-2006-3812 (Secunia mirror)
CVE-2006-4253 (Secunia mirror)
CVE-2006-4340 (Secunia mirror)
CVE-2006-4565 (Secunia mirror)
CVE-2006-4566 (Secunia mirror)
CVE-2006-4567 (Secunia mirror)
CVE-2006-4568 (Secunia mirror)
CVE-2006-4569 (Secunia mirror)
CVE-2006-4571 (Secunia mirror)
CVE-2006-5462 (Secunia mirror)
CVE-2006-5463 (Secunia mirror)
CVE-2006-5464 (Secunia mirror)
CVE-2006-5747 (Secunia mirror)
CVE-2006-6077 (Secunia mirror)
CVE-2006-6497 (Secunia mirror)
CVE-2006-6498 (Secunia mirror)
CVE-2006-6499 (Secunia mirror)
CVE-2006-6500 (Secunia mirror)
CVE-2006-6501 (Secunia mirror)
CVE-2006-6502 (Secunia mirror)
CVE-2006-6503 (Secunia mirror)
CVE-2006-6504 (Secunia mirror)
CVE-2006-6506 (Secunia mirror)
CVE-2006-6507 (Secunia mirror)
CVE-2007-0008 (Secunia mirror)
CVE-2007-0009 (Secunia mirror)
CVE-2007-0775 (Secunia mirror)
CVE-2007-0776 (Secunia mirror)
CVE-2007-0777 (Secunia mirror)
CVE-2007-0778 (Secunia mirror)
CVE-2007-0779 (Secunia mirror)
CVE-2007-0780 (Secunia mirror)
CVE-2007-0800 (Secunia mirror)
CVE-2007-0981 (Secunia mirror)
CVE-2007-0994 (Secunia mirror)
CVE-2007-0995 (Secunia mirror)
CVE-2007-0996 (Secunia mirror)
CVE-2007-1092 (Secunia mirror)
CVE-2007-1362 (Secunia mirror)
CVE-2007-1558 (Secunia mirror)
CVE-2007-2867 (Secunia mirror)
CVE-2007-2868 (Secunia mirror)
CVE-2007-2869 (Secunia mirror)
CVE-2007-2870 (Secunia mirror)
CVE-2007-2871 (Secunia mirror)
CVE-2007-3089 (Secunia mirror)
CVE-2007-3656 (Secunia mirror)
CVE-2007-3670 (Secunia mirror)
CVE-2007-3734 (Secunia mirror)
CVE-2007-3735 (Secunia mirror)
CVE-2007-3736 (Secunia mirror)
CVE-2007-3737 (Secunia mirror)
CVE-2007-3738 (Secunia mirror)
|
|
|
|
|
|
Description:
HP has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, gain knowledge of potentially sensitive information, conduct cross-site scripting, phishing, and HTTP response smuggling attacks, or compromise a user's system.
For more information:
SA14938
SA19631
SA19698
SA19802
SA19873
SA20376
SA21906
SA22722
SA23282
SA24205
SA25469
SA25984
SA25990
SA26095
Solution:
A preliminary version of Firefox v2.0.0.6 is available:
ftp://ftp.mozilla.org/pub/mozilla.org/firefox/releases/2.0.0.6/contrib/
Changelog:
2007-09-03: Updated "Solution" section. Added additional links and CVE references.
2007-09-19: Updated "Solution" section. Added additional links and CVE references.
Original Advisory:
HPSBUX02153 SSRT061181:
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742
Other References:
SA14938:
http://secunia.com/advisories/14938/
SA19631:
http://secunia.com/advisories/19631/
SA19698:
http://secunia.com/advisories/19698/
SA19873:
http://secunia.com/advisories/19873/
SA20376:
http://secunia.com/advisories/20376/
SA21906:
http://secunia.com/advisories/21906/
SA22722:
http://secunia.com/advisories/22722/
SA23282:
http://secunia.com/advisories/23282/
SA24205:
http://secunia.com/advisories/24205/
SA25469:
http://secunia.com/advisories/25469/
SA25984:
http://secunia.com/advisories/25984/
SA25990:
http://secunia.com/advisories/25990/
SA26095:
http://secunia.com/advisories/26095/
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
183 Related Secunia Security Advisories, displaying 10
|
|
|
1. HP-UX libc Denial of Service Vulnerability
|
|
2. HP-UX System Administration Manager Security Issue
|
|
3. HP-UX update for bind
|
|
4. HP-UX HP CIFS Server Multiple Vulnerabilities
|
|
5. HP-UX update for Apache with PHP
|
|
6. HP-UX Secure Shell Unauthorized Access Vulnerability
|
|
7. HP-UX useradd Security Bypass
|
|
8. HP-UX ftp Server Unspecified Denial of Service
|
|
9. HP-UX LDAP-UX Privilege Escalation Vulnerability
|
|
10. HP-UX update for Netscape Directory Server
|
Show all related advisories
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
|
|
Secunia PSI
Scan | Patch | Track
Free Download
|
|
|
Secunia Poll
|
|
|
|
|
 |
|
|
Most Popular Advisories
|
|
|
|
|
|
