Mozilla Firefox Multiple Vulnerabilities-01 Jul15 (Windows)

This host is installed with Mozilla Firefox and is prone to multiple vulnerabilities.

Multiple flaws are due to: - An error within Network Security Services (NSS) where the client allows for a 'ECDHE_ECDSA' exchange where the server does not send its 'ServerKeyExchange' message. - Multiple use-after-free vulnerabilities. - Multiple unspecified memory related errors. - An error within the 'IndexedDatabaseManager' class in the IndexedDB implementation. - An error within the 'AudioParamTimeline::AudioNodeInputValue' function in the Web Audio implementation . - An error in the implementation of Elliptical Curve Cryptography (ECC) multiplication for Elliptic Curve Digital Signature Algorithm (ECDSA) signature validation in Network Security Services (NSS). - An error in the 'CairoTextureClientD3D9::BorrowDrawTarget' function in the Direct3D 9 implementation. - An error in 'nsZipArchive::BuildFileList' function. - Unspecified error in nsZipArchive.cpp script. - An error in the 'rx::d3d11::SetBufferData' function in the Direct3D 11 implementation. - An error in the 'YCbCrImageDataDeserializer::ToDataSourceSurface' function in the YCbCr implementation. - An error in 'ArrayBufferBuilder::append' function. - Buffer overflow error in the 'nsXMLHttpRequest::AppendToResponseText' function. - An overridable error allowing for skipping pinning checks. - An error in PDF.js PDF file viewer.

Mozilla Firefox before version 39.0 on Windows

Checks if a vulnerable version is present on the target host.

Upgrade to Mozilla Firefox version 39.0 or later.