vulnerability

FreeBSD: VID-555B244E-6B20-4546-851F-D8EB7D6C1FFA (CVE-2017-7789): mozilla -- multiple vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:P/A:N)	08/08/2017	08/08/2017	08/17/2018

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:P/A:N)

Published

08/08/2017

Added

08/08/2017

Modified

08/17/2018

Description

If a server sends two Strict-Transport-Security (STS) headers for a single connection, they will be rejected as invalid and HTTP Strict Transport Security (HSTS) will not be enabled for the connection. This vulnerability affects Firefox

Solution(s)

freebsd-upgrade-package-firefoxfreebsd-upgrade-package-firefox-esrfreebsd-upgrade-package-libxulfreebsd-upgrade-package-linux-firefoxfreebsd-upgrade-package-linux-seamonkeyfreebsd-upgrade-package-linux-thunderbirdfreebsd-upgrade-package-seamonkeyfreebsd-upgrade-package-thunderbird

References

BID-100374
SECTRACK-1039124
NVD-CVE-2017-7789
UBUNTU-USN-3391-1
UBUNTU-USN-3391-2
UBUNTU-USN-3391-3

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today