JVN Info.

Id
12853  
Name
JVNDB-2014-001728  
Title
複数の Mozilla 製品の libxul.so!gfxContext::Polygon 関数におけるプロセスメモリから重要な情報を取得される脆弱性  
Summary
Mozilla Firefox、Thunderbird、および SeaMonkey の libxul.so!gfxContext::Polygon 関数には、プロセスメモリから重要な情報を取得される、サービス運用妨害 (out-of-bounds read およびアプリケーションクラッシュ) 状態にされる、または同一生成元ポリシーを回避される脆弱性が存在します。  
Nvdinfo
CVE-2014-1508  
Cvssv2
6.8  
Jvnurl
http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-001728.html  
Published Date
2014-03-18  
Registered Date
2014-03-20  
Last Updated Date
2014-04-08  

Actions

Related Nessuslogs

Id Log ID Jvninfo Id Plugin ID CVE CVSS Risk Host Protocol Port Name Synopsis Description Solution See Also Plugin Output Actions
51540 H28_MUN_DWEB_Q4_172_16_240_seg.csv 12853 89674 CVE-2010-1321 10 Critical 172.16.240.115 tcp 443 VMware ESX / ESXi Third-Party Libraries Multiple Vulnerabilities (VMSA-2011-0003) (remote check) The remote VMware ESX / ESXi host is missing a security-related patch. The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in several third-party components and libraries : - Apache Tomcat - Apache Tomcat Manager - cURL - Java Runtime Environment (JRE) - Kernel - Microsoft SQL Express - OpenSSL - pam_krb5 Apply the appropriate patch according to the vendor advisory that pertains to ESX version 4.0 / 4.1 or ESXi version 4.0 / 4.1. https://www.vmware.com/security/advisories/VMSA-2011-0003 http://lists.vmware.com/pipermail/security-announce/2011/000140.html Version : ESX 4.0 Installed build : 208167 Fixed build : 360236
51674 H28_MUN_DWEB_Q4_172_16_240_seg.csv 12853 89681 CVE-2010-1321 10 Critical 172.16.240.115 tcp 443 VMware ESX / ESXi Third-Party Libraries Multiple Vulnerabilities (VMSA-2011-0013) (remote check) The remote VMware ESX / ESXi host is missing a security-related patch. The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in several third-party components and libraries : - Java Runtime Environment (JRE) - libuser - Netscape Portable Runtime (NSPR) - Network Security Services (NSS) - OpenSSL Apply the appropriate patch according to the vendor advisory that pertains to ESX version 4.0 / 4.1 or ESXi version 4.0 / 4.1. https://www.vmware.com/security/advisories/VMSA-2011-0013 http://lists.vmware.com/pipermail/security-announce/2012/000169.html Version : ESX 4.0 Installed build : 208167 Fixed build : 660575
51888 H28_MUN_DWEB_Q4_172_16_240_seg.csv 12853 89741 CVE-2010-1321 8.5 High 172.16.240.115 tcp 443 VMware ESX Multiple Vulnerabilities (VMSA-2010-0013) (remote check) The remote VMware ESX host is missing a security-related patch. The remote VMware ESX host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in several third-party components and libraries : - GNU cpio - GNU cpio on 64-bit - GNU tar - Kerberos 5 - Perl - PostgreSQL - Safe Module for Perl Automagic Methods - Samba smbd Apply the appropriate patch as referenced in the vendor advisory that pertains to ESX version 3.5 / 4.0 / 4.1. http://lists.vmware.com/pipermail/security-announce/2011/000125.html Version : ESX 4.0 Installed build : 208167 Fixed build : 294855
57121 H28_DWEB_NW_Scan_Q1_172_16_240_Seg_20160518_hepxqa.csv 12853 89674 CVE-2010-1321 10 Critical 172.16.240.115 tcp 443 VMware ESX / ESXi Third-Party Libraries Multiple Vulnerabilities (VMSA-2011-0003) (remote check) The remote VMware ESX / ESXi host is missing a security-related patch. The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in several third-party components and libraries : - Apache Tomcat - Apache Tomcat Manager - cURL - Java Runtime Environment (JRE) - Kernel - Microsoft SQL Express - OpenSSL - pam_krb5 Apply the appropriate patch according to the vendor advisory that pertains to ESX version 4.0 / 4.1 or ESXi version 4.0 / 4.1. https://www.vmware.com/security/advisories/VMSA-2011-0003 http://lists.vmware.com/pipermail/security-announce/2011/000140.html Version : ESX 4.0 Installed build : 208167 Fixed build : 360236
57255 H28_DWEB_NW_Scan_Q1_172_16_240_Seg_20160518_hepxqa.csv 12853 89681 CVE-2010-1321 10 Critical 172.16.240.115 tcp 443 VMware ESX / ESXi Third-Party Libraries Multiple Vulnerabilities (VMSA-2011-0013) (remote check) The remote VMware ESX / ESXi host is missing a security-related patch. The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in several third-party components and libraries : - Java Runtime Environment (JRE) - libuser - Netscape Portable Runtime (NSPR) - Network Security Services (NSS) - OpenSSL Apply the appropriate patch according to the vendor advisory that pertains to ESX version 4.0 / 4.1 or ESXi version 4.0 / 4.1. https://www.vmware.com/security/advisories/VMSA-2011-0013 http://lists.vmware.com/pipermail/security-announce/2012/000169.html Version : ESX 4.0 Installed build : 208167 Fixed build : 660575
57469 H28_DWEB_NW_Scan_Q1_172_16_240_Seg_20160518_hepxqa.csv 12853 89741 CVE-2010-1321 8.5 High 172.16.240.115 tcp 443 VMware ESX Multiple Vulnerabilities (VMSA-2010-0013) (remote check) The remote VMware ESX host is missing a security-related patch. The remote VMware ESX host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in several third-party components and libraries : - GNU cpio - GNU cpio on 64-bit - GNU tar - Kerberos 5 - Perl - PostgreSQL - Safe Module for Perl Automagic Methods - Samba smbd Apply the appropriate patch as referenced in the vendor advisory that pertains to ESX version 3.5 / 4.0 / 4.1. http://lists.vmware.com/pipermail/security-announce/2011/000125.html Version : ESX 4.0 Installed build : 208167 Fixed build : 294855