rPSA-2007-0062-1 firefox
rPath Security Advisory: 2007-0062-1
Published: 2007-04-04
Products: rPath Linux 1
Rating: Minor
Exposure Level Classification:
Indirect User Deterministic Information Exposure
Updated Versions:
firefox=/conary.rpath.com@rpl:devel//1/1.5.0.10-0.1-2
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1562
https://issues.rpath.com/browse/RPL-1157
Description:
Previous versions of the firefox package are vulnerable to a minor
information exposure: when using passive FTP to connect to a
malicious FTP server, the server could determine which ports were
open on the client.