10 - USN-1638-1

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Summary
Title	Firefox vulnerabilities

Informations
Name	USN-1638-1	First vendor Publication	2012-11-21
Vendor	Ubuntu	Last vendor Modification	2012-11-21
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score	10	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 12.10 - Ubuntu 12.04 LTS - Ubuntu 11.10 - Ubuntu 10.04 LTS

Summary:

Several security issues were fixed in Firefox.

Software Description: - firefox: Mozilla Open Source web browser

Details:

Gary Kwong, Jesse Ruderman, Christian Holler, Bob Clary, Kyle Huey, Ed Morley, Chris Lord, Boris Zbarsky, Julian Seward, Bill McCloskey, and Andrew McCreight discovered multiple memory safety issues affecting Firefox. If the user were tricked into opening a specially crafted page, an attacker could possibly exploit these to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Firefox. (CVE-2012-5842, CVE-2012-5843)

Atte Kettunen discovered a buffer overflow while rendering GIF format images. An attacker could exploit this to possibly execute arbitrary code as the user invoking Firefox. (CVE-2012-4202)

It was discovered that the evalInSandbox function's JavaScript sandbox context could be circumvented. An attacker could exploit this to perform a cross-site scripting (XSS) attack or steal a copy of a local file if the user has installed an add-on vulnerable to this attack. With cross-site scripting vulnerabilities, if a user were tricked into viewing a specially crafted page, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain. (CVE-2012-4201)

Jonathan Stephens discovered that combining vectors involving the setting of Cascading Style Sheets (CSS) properties in conjunction with SVG text could cause Firefox to crash. If a user were tricked into opening a malicious web page, an attacker could cause a denial of service via application crash or execute arbitrary code with the privliges of the user invoking the program. (CVE-2012-5836)

It was discovered that if a javascript: URL is selected from the list of Firefox "new tab" page, the script will inherit the privileges of the privileged "new tab" page. This allows for the execution of locally installed programs if a user can be convinced to save a bookmark of a malicious javascript: URL. (CVE-2012-4203)

Scott Bell discovered a memory corruption issue in the JavaScript engine. If a user were tricked into opening a malicious website, an attacker could exploit this to execute arbitrary JavaScript code within the context of another website or arbitrary code as the user invoking the program. (CVE-2012-4204)

Gabor Krizsanits discovered that XMLHttpRequest objects created within sandboxes have the system principal instead of the sandbox principal. This can lead to cross-site request forgery (CSRF) or information theft via an add-on running untrusted code in a sandbox. (CVE-2012-4205)

Peter Van der Beken discovered XrayWrapper implementation in Firefox does not consider the compartment during property filtering. An attacker could use this to bypass intended chrome-only restrictions on reading DOM object properties via a crafted web site. (CVE-2012-4208)

Bobby Holley discovered that cross-origin wrappers were allowing write actions on objects when only read actions should have been properly allowed. This can lead to cross-site scripting (XSS) attacks. With cross-site scripting vulnerabilities, if a user were tricked into viewing a specially crafted page, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain. (CVE-2012-5841)

Masato Kinugawa discovered that when HZ-GB-2312 charset encoding is used for text, the "~" character will destroy another character near the chunk delimiter. This can lead to a cross-site scripting (XSS) attack in pages encoded in HZ-GB-2312. With cross-site scripting vulnerabilities, if a user were tricked into viewing a specially crafted page, a remote attacker could exploit these to modify the contents, or steal confidential data, within the same domain. (CVE-2012-4207)

Mariusz Mlynski discovered that the location property can be accessed by binary plugins through top.location with a frame whose name attribute's value is set to "top". This can allow for possible cross-site scripting (XSS) attacks through plugins. With cross-site scripting vulnerabilities, if a user were tricked into viewing a specially crafted page, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain. (CVE-2012-4209)

Mariusz Mlynski discovered that when a maliciously crafted stylesheet is inspected in the Style Inspector, HTML and CSS can run in a chrome privileged context without being properly sanitized first. If a user were tricked into opening a malicious web page, an attacker could execute arbitrary code with the privliges of the user invoking the program. (CVE-2012-4210)

Abhishek Arya discovered multiple use-after-free and buffer overflow issues in Firefox. If a user were tricked into opening a malicious page, an attacker could exploit these to execute arbitrary code as the user invoking the program. (CVE-2012-4214, CVE-2012-4215, CVE-2012-4216, CVE-2012-5829, CVE-2012-5839, CVE-2012-5840, CVE-2012-4212, CVE-2012-4213, CVE-2012-4217, CVE-2012-4218)

Several memory corruption flaws were discovered in Firefox. If a user were tricked into opening a malicious page, an attacker could exploit these to execute arbitrary code as the user invoking the program. (CVE-2012-5830, CVE-2012-5833, CVE-2012-5835, CVE-2012-5838)

Update instructions:

The problem can be corrected by updating your system to the following package versions:

Ubuntu 12.10:
firefox 17.0+build2-0ubuntu0.12.10.1

Ubuntu 12.04 LTS:
firefox 17.0+build2-0ubuntu0.12.04.1

Ubuntu 11.10:
firefox 17.0+build2-0ubuntu0.11.10.1

Ubuntu 10.04 LTS:
firefox 17.0+build2-0ubuntu0.10.04.1

After a standard system update you need to restart Firefox to make all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-1638-1
CVE-2012-4201, CVE-2012-4202, CVE-2012-4203, CVE-2012-4204,
CVE-2012-4205, CVE-2012-4207, CVE-2012-4208, CVE-2012-4209,
CVE-2012-4210, CVE-2012-4212, CVE-2012-4213, CVE-2012-4214,
CVE-2012-4215, CVE-2012-4216, CVE-2012-4217, CVE-2012-4218,
CVE-2012-5829, CVE-2012-5830, CVE-2012-5833, CVE-2012-5835,
CVE-2012-5836, CVE-2012-5838, CVE-2012-5839, CVE-2012-5840,
CVE-2012-5841, CVE-2012-5842, CVE-2012-5843, https://launchpad.net/bugs/1080211

Package Information:
https://launchpad.net/ubuntu/+source/firefox/17.0+build2-0ubuntu0.12.10.1
https://launchpad.net/ubuntu/+source/firefox/17.0+build2-0ubuntu0.12.04.1
https://launchpad.net/ubuntu/+source/firefox/17.0+build2-0ubuntu0.11.10.1
https://launchpad.net/ubuntu/+source/firefox/17.0+build2-0ubuntu0.10.04.1

Original Source

Url : http://www.ubuntu.com/usn/USN-1638-1

CWE : Common Weakness Enumeration

%	Id	Name
33 %	CWE-416	Use After Free
19 %	CWE-79	Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25)
11 %	CWE-787	Out-of-bounds Write (CWE/SANS Top 25)
11 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer
7 %	CWE-264	Permissions, Privileges, and Access Controls
7 %	CWE-94	Failure to Control Generation of Code ('Code Injection')
4 %	CWE-352	Cross-Site Request Forgery (CSRF) (CWE/SANS Top 25)
4 %	CWE-200	Information Exposure
4 %	CWE-190	Integer Overflow or Wraparound (CWE/SANS Top 25)

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:15993

Oval ID:	oval:org.mitre.oval:def:15993
Title:	Use-after-free vulnerability in the XPCWrappedNative::Mark function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.
Description:	Use-after-free vulnerability in the XPCWrappedNative::Mark function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-4212	Version:	19
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.1 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1

Definition Id: oval:org.mitre.oval:def:15995

Oval ID:	oval:org.mitre.oval:def:15995
Title:	The evalInSandbox implementation in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 uses an incorrect context during the handling of JavaScript code that sets the location.href property, which allows remote attackers to conduct cross-site scripting (XSS) attacks or read arbitrary files by leveraging a sandboxed add-on.
Description:	The evalInSandbox implementation in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 uses an incorrect context during the handling of JavaScript code that sets the location.href property, which allows remote attackers to conduct cross-site scripting (XSS) attacks or read arbitrary files by leveraging a sandboxed add-on.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-4201	Version:	18
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey Mozilla Firefox ESR Mozilla Thunderbird ESR
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.1 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1 OR Check for vulnerable Mozilla Firefox ESR Mozilla Firefox ESR is installed AND Mozilla Firefox ESR version is less than 10.0.11 and greater than or equal to 10.x OR Check for vulnerable Mozilla Thunderbird ESR Mozilla Thunderbird ESR is installed AND Mozilla Thunderbird ESR version is less than 10.0.11 and greater than or equal to 10.x

Definition Id: oval:org.mitre.oval:def:16336

Oval ID:	oval:org.mitre.oval:def:16336
Title:	Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving the setting of Cascading Style Sheets (CSS) properties in conjunction with SVG text.
Description:	Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving the setting of Cascading Style Sheets (CSS) properties in conjunction with SVG text.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-5836	Version:	20
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.2 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1

Definition Id: oval:org.mitre.oval:def:16503

Oval ID:	oval:org.mitre.oval:def:16503
Title:	The New Tab page in Mozilla Firefox before 17.0 uses a privileged context for execution of JavaScript code by bookmarklets, which allows user-assisted remote attackers to run arbitrary programs by leveraging a javascript
Description:	The New Tab page in Mozilla Firefox before 17.0 uses a privileged context for execution of JavaScript code by bookmarklets, which allows user-assisted remote attackers to run arbitrary programs by leveraging a javascript: URL in a bookmark.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-4203	Version:	9
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000	Product(s):	Mozilla Firefox
Definition Synopsis:
Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1

Definition Id: oval:org.mitre.oval:def:16542

Oval ID:	oval:org.mitre.oval:def:16542
Title:	The Web Developer Toolbar in Mozilla Firefox before 17.0 executes script with chrome privileges, which allows user-assisted remote attackers to conduct cross-site scripting (XSS) attacks via a crafted string.
Description:	The Web Developer Toolbar in Mozilla Firefox before 17.0 executes script with chrome privileges, which allows user-assisted remote attackers to conduct cross-site scripting (XSS) attacks via a crafted string.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-5837	Version:	8
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000	Product(s):	Mozilla Firefox
Definition Synopsis:
Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1

Definition Id: oval:org.mitre.oval:def:16573

Oval ID:	oval:org.mitre.oval:def:16573
Title:	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Description:	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-5842	Version:	21
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey Mozilla Firefox ESR Mozilla Thunderbird ESR
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.2 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1 OR Check for vulnerable Mozilla Firefox ESR Mozilla Firefox ESR is installed AND Mozilla Firefox ESR version is less than 10.0.11 and greater than or equal to 10.x OR Check for vulnerable Mozilla Thunderbird ESR Mozilla Thunderbird ESR is installed AND Mozilla Thunderbird ESR version is less than 10.0.11 and greater than or equal to 10.x

Definition Id: oval:org.mitre.oval:def:16590

Oval ID:	oval:org.mitre.oval:def:16590
Title:	Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 implement cross-origin wrappers with a filtering behavior that does not properly restrict write actions, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted web site.
Description:	Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 implement cross-origin wrappers with a filtering behavior that does not properly restrict write actions, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted web site.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-5841	Version:	21
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey Mozilla Firefox ESR Mozilla Thunderbird ESR
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.2 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1 OR Check for vulnerable Mozilla Firefox ESR Mozilla Firefox ESR is installed AND Mozilla Firefox ESR version is less than 10.0.11 and greater than or equal to 10.x OR Check for vulnerable Mozilla Thunderbird ESR Mozilla Thunderbird ESR is installed AND Mozilla Thunderbird ESR version is less than 10.0.11 and greater than or equal to 10.x

Definition Id: oval:org.mitre.oval:def:16603

Oval ID:	oval:org.mitre.oval:def:16603
Title:	Integer overflow in the WebGL subsystem in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (invalid write operation) via crafted data.
Description:	Integer overflow in the WebGL subsystem in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (invalid write operation) via crafted data.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-5835	Version:	21
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey Mozilla Firefox ESR Mozilla Thunderbird ESR
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.2 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1 OR Check for vulnerable Mozilla Firefox ESR Mozilla Firefox ESR is installed AND Mozilla Firefox ESR version is less than 10.0.11 and greater than or equal to 10.x OR Check for vulnerable Mozilla Thunderbird ESR Mozilla Thunderbird ESR is installed AND Mozilla Thunderbird ESR version is less than 10.0.11 and greater than or equal to 10.x

Definition Id: oval:org.mitre.oval:def:16690

Oval ID:	oval:org.mitre.oval:def:16690
Title:	Use-after-free vulnerability in the nsPlaintextEditor::FireClipboardEvent function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.
Description:	Use-after-free vulnerability in the nsPlaintextEditor::FireClipboardEvent function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-4215	Version:	22
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey Mozilla Firefox ESR Mozilla Thunderbird ESR
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.2 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1 OR Check for vulnerable Mozilla Firefox ESR Mozilla Firefox ESR is installed AND Mozilla Firefox ESR version is less than 10.0.11 and greater than or equal to 10.x OR Check for vulnerable Mozilla Thunderbird ESR Mozilla Thunderbird ESR is installed AND Mozilla Thunderbird ESR version is less than 10.0.11 and greater than or equal to 10.x

Definition Id: oval:org.mitre.oval:def:16695

Oval ID:	oval:org.mitre.oval:def:16695
Title:	The XrayWrapper implementation in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 does not consider the compartment during property filtering, which allows remote attackers to bypass intended chrome-only restrictions on reading DOM object properties via a crafted web site.
Description:	The XrayWrapper implementation in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 does not consider the compartment during property filtering, which allows remote attackers to bypass intended chrome-only restrictions on reading DOM object properties via a crafted web site.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-4208	Version:	21
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.2 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1

Definition Id: oval:org.mitre.oval:def:16739

Oval ID:	oval:org.mitre.oval:def:16739
Title:	Heap-based buffer overflow in the image::RasterImage::DrawFrameTo function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code via a crafted GIF image.
Description:	Heap-based buffer overflow in the image::RasterImage::DrawFrameTo function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code via a crafted GIF image.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-4202	Version:	22
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey Mozilla Firefox ESR Mozilla Thunderbird ESR
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.2 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1 OR Check for vulnerable Mozilla Firefox ESR Mozilla Firefox ESR is installed AND Mozilla Firefox ESR version is less than 10.0.11 and greater than or equal to 10.x OR Check for vulnerable Mozilla Thunderbird ESR Mozilla Thunderbird ESR is installed AND Mozilla Thunderbird ESR version is less than 10.0.11 and greater than or equal to 10.x

Definition Id: oval:org.mitre.oval:def:16748

Oval ID:	oval:org.mitre.oval:def:16748
Title:	The texImage2D implementation in the WebGL subsystem in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 does not properly interact with Mesa drivers, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via function calls involving certain values of the level parameter.
Description:	The texImage2D implementation in the WebGL subsystem in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 does not properly interact with Mesa drivers, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via function calls involving certain values of the level parameter.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-5833	Version:	21
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey Mozilla Firefox ESR Mozilla Thunderbird ESR
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.2 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1 OR Check for vulnerable Mozilla Firefox ESR Mozilla Firefox ESR is installed AND Mozilla Firefox ESR version is less than 10.0.11 and greater than or equal to 10.x OR Check for vulnerable Mozilla Thunderbird ESR Mozilla Thunderbird ESR is installed AND Mozilla Thunderbird ESR version is less than 10.0.11 and greater than or equal to 10.x

Definition Id: oval:org.mitre.oval:def:16761

Oval ID:	oval:org.mitre.oval:def:16761
Title:	Use-after-free vulnerability in the nsEditor::FindNextLeafNode function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.
Description:	Use-after-free vulnerability in the nsEditor::FindNextLeafNode function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-4213	Version:	22
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.2 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1

Definition Id: oval:org.mitre.oval:def:16766

Oval ID:	oval:org.mitre.oval:def:16766
Title:	The str_unescape function in the JavaScript engine in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.
Description:	The str_unescape function in the JavaScript engine in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-4204	Version:	21
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.2 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1

Definition Id: oval:org.mitre.oval:def:16833

Oval ID:	oval:org.mitre.oval:def:16833
Title:	The Style Inspector in Mozilla Firefox before 17.0 and Firefox ESR 10.x before 10.0.11 does not properly restrict the context of HTML markup and Cascading Style Sheets (CSS) token sequences, which allows user-assisted remote attackers to execute arbitrary JavaScript code with chrome privileges via a crafted stylesheet.
Description:	The Style Inspector in Mozilla Firefox before 17.0 and Firefox ESR 10.x before 10.0.11 does not properly restrict the context of HTML markup and Cascading Style Sheets (CSS) token sequences, which allows user-assisted remote attackers to execute arbitrary JavaScript code with chrome privileges via a crafted stylesheet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-4210	Version:	8
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000	Product(s):	Mozilla Firefox Mozilla Firefox ESR
Definition Synopsis:
Check for vulnerable Firefox mainline Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1 OR Check for vulnerable Mozilla Firefox ESR Mozilla Firefox ESR is installed AND Mozilla Firefox ESR version is less than 10.0.11 and greater than or equal to 10.x

Definition Id: oval:org.mitre.oval:def:16839

Oval ID:	oval:org.mitre.oval:def:16839
Title:	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Description:	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-5843	Version:	21
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.2 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1

Definition Id: oval:org.mitre.oval:def:16849

Oval ID:	oval:org.mitre.oval:def:16849
Title:	Heap-based buffer overflow in the nsWindow::OnExposeEvent function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code via unspecified vectors.
Description:	Heap-based buffer overflow in the nsWindow::OnExposeEvent function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code via unspecified vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-5829	Version:	19
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey Mozilla Firefox ESR Mozilla Thunderbird ESR
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.1 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1 OR Check for vulnerable Mozilla Firefox ESR Mozilla Firefox ESR is installed AND Mozilla Firefox ESR version is less than 10.0.11 and greater than or equal to 10.x OR Check for vulnerable Mozilla Thunderbird ESR Mozilla Thunderbird ESR is installed AND Mozilla Thunderbird ESR version is less than 10.0.11 and greater than or equal to 10.x

Definition Id: oval:org.mitre.oval:def:16880

Oval ID:	oval:org.mitre.oval:def:16880
Title:	Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 do not prevent use of a "top" frame name-attribute value to access the location property, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via vectors involving a binary plugin.
Description:	Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 do not prevent use of a "top" frame name-attribute value to access the location property, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via vectors involving a binary plugin.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-4209	Version:	18
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey Mozilla Firefox ESR Mozilla Thunderbird ESR
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.1 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1 OR Check for vulnerable Mozilla Firefox ESR Mozilla Firefox ESR is installed AND Mozilla Firefox ESR version is less than 10.0.11 and greater than or equal to 10.x OR Check for vulnerable Mozilla Thunderbird ESR Mozilla Thunderbird ESR is installed AND Mozilla Thunderbird ESR version is less than 10.0.11 and greater than or equal to 10.x

Definition Id: oval:org.mitre.oval:def:16884

Oval ID:	oval:org.mitre.oval:def:16884
Title:	Use-after-free vulnerability in the nsTextEditorState::PrepareEditor function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-5840.
Description:	Use-after-free vulnerability in the nsTextEditorState::PrepareEditor function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-5840.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-4214	Version:	19
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey Mozilla Firefox ESR Mozilla Thunderbird ESR
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.1 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1 OR Check for vulnerable Mozilla Firefox ESR Mozilla Firefox ESR is installed AND Mozilla Firefox ESR version is less than 10.0.11 and greater than or equal to 10.x OR Check for vulnerable Mozilla Thunderbird ESR Mozilla Thunderbird ESR is installed AND Mozilla Thunderbird ESR version is less than 10.0.11 and greater than or equal to 10.x

Definition Id: oval:org.mitre.oval:def:16885

Oval ID:	oval:org.mitre.oval:def:16885
Title:	Use-after-free vulnerability in the BuildTextRunsScanner::BreakSink::SetBreaks function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.
Description:	Use-after-free vulnerability in the BuildTextRunsScanner::BreakSink::SetBreaks function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-4218	Version:	19
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.1 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1

Definition Id: oval:org.mitre.oval:def:16896

Oval ID:	oval:org.mitre.oval:def:16896
Title:	The copyTexImage2D implementation in the WebGL subsystem in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via large image dimensions.
Description:	The copyTexImage2D implementation in the WebGL subsystem in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via large image dimensions.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-5838	Version:	22
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.2 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1

Definition Id: oval:org.mitre.oval:def:16902

Oval ID:	oval:org.mitre.oval:def:16902
Title:	Use-after-free vulnerability in the gfxFont::GetFontEntry function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.
Description:	Use-after-free vulnerability in the gfxFont::GetFontEntry function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-4216	Version:	19
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey Mozilla Firefox ESR Mozilla Thunderbird ESR
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.1 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1 OR Check for vulnerable Mozilla Firefox ESR Mozilla Firefox ESR is installed AND Mozilla Firefox ESR version is less than 10.0.11 and greater than or equal to 10.x OR Check for vulnerable Mozilla Thunderbird ESR Mozilla Thunderbird ESR is installed AND Mozilla Thunderbird ESR version is less than 10.0.11 and greater than or equal to 10.x

Definition Id: oval:org.mitre.oval:def:16904

Oval ID:	oval:org.mitre.oval:def:16904
Title:	Use-after-free vulnerability in the nsTextEditorState::PrepareEditor function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-4214.
Description:	Use-after-free vulnerability in the nsTextEditorState::PrepareEditor function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-4214.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-5840	Version:	22
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey Mozilla Firefox ESR Mozilla Thunderbird ESR
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.2 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1 OR Check for vulnerable Mozilla Firefox ESR Mozilla Firefox ESR is installed AND Mozilla Firefox ESR version is less than 10.0.11 and greater than or equal to 10.x OR Check for vulnerable Mozilla Thunderbird ESR Mozilla Thunderbird ESR is installed AND Mozilla Thunderbird ESR version is less than 10.0.11 and greater than or equal to 10.x

Definition Id: oval:org.mitre.oval:def:16905

Oval ID:	oval:org.mitre.oval:def:16905
Title:	DEPRECATED: Use-after-free vulnerability in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 on Mac OS X allows remote attackers to execute arbitrary code via an HTML document.
Description:	Use-after-free vulnerability in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 on Mac OS X allows remote attackers to execute arbitrary code via an HTML document.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-5830	Version:	5
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000	Product(s):	Mozilla Firefox Mozilla Firefox ESR Mozilla Thunderbird ESR
Definition Synopsis:
Check for vulnerable Firefox mainline Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1 OR Check for vulnerable Mozilla Firefox ESR Mozilla Firefox ESR is installed AND Mozilla Firefox ESR version is less than 10.0.11 and greater than or equal to 10.x OR Check for vulnerable Mozilla Thunderbird ESR Mozilla Thunderbird ESR is installed AND Mozilla Thunderbird ESR version is less than 10.0.11 and greater than or equal to 10.x

Definition Id: oval:org.mitre.oval:def:16955

Oval ID:	oval:org.mitre.oval:def:16955
Title:	The HZ-GB-2312 character-set implementation in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 does not properly handle a ~ (tilde) character in proximity to a chunk delimiter, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted document.
Description:	The HZ-GB-2312 character-set implementation in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 does not properly handle a ~ (tilde) character in proximity to a chunk delimiter, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted document.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-4207	Version:	18
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey Mozilla Firefox ESR Mozilla Thunderbird ESR
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.1 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1 OR Check for vulnerable Mozilla Firefox ESR Mozilla Firefox ESR is installed AND Mozilla Firefox ESR version is less than 10.0.11 and greater than or equal to 10.x OR Check for vulnerable Mozilla Thunderbird ESR Mozilla Thunderbird ESR is installed AND Mozilla Thunderbird ESR version is less than 10.0.11 and greater than or equal to 10.x

Definition Id: oval:org.mitre.oval:def:16958

Oval ID:	oval:org.mitre.oval:def:16958
Title:	Use-after-free vulnerability in the nsViewManager::ProcessPendingUpdates function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.
Description:	Use-after-free vulnerability in the nsViewManager::ProcessPendingUpdates function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-4217	Version:	22
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.2 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1

Definition Id: oval:org.mitre.oval:def:16965

Oval ID:	oval:org.mitre.oval:def:16965
Title:	Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 assign the system principal, rather than the sandbox principal, to XMLHttpRequest objects created in sandboxes, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks or obtain sensitive information by leveraging a sandboxed add-on.
Description:	Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 assign the system principal, rather than the sandbox principal, to XMLHttpRequest objects created in sandboxes, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks or obtain sensitive information by leveraging a sandboxed add-on.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-4205	Version:	18
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.1 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1

Definition Id: oval:org.mitre.oval:def:16968

Oval ID:	oval:org.mitre.oval:def:16968
Title:	Heap-based buffer overflow in the gfxShapedWord::CompressedGlyph::IsClusterStart function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code via unspecified vectors.
Description:	Heap-based buffer overflow in the gfxShapedWord::CompressedGlyph::IsClusterStart function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code via unspecified vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2012-5839	Version:	22
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox Mozilla Thunderbird Mozilla SeaMonkey Mozilla Firefox ESR Mozilla Thunderbird ESR
Definition Synopsis:
Check for vulnerable Thunderbird Mozilla Thunderbird Mainline release is installed AND Determine if the version of Mozilla Thunderbird is less than or equal to 16.0.2 AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1 AND Check for vulnerable SeaMonkey Mozilla Seamonkey is installed AND Determine if the version of Mozilla Seamonkey is less than or equal to 2.14 AND Check for vulnerable Firefox Mozilla Firefox Mainline release is installed AND Mozilla Firefox Mainline version is less than or equal to 16.0.2 AND Mozilla Firefox Mainline version is greater than or equal to 0.1 OR Check for vulnerable Mozilla Firefox ESR Mozilla Firefox ESR is installed AND Mozilla Firefox ESR version is less than 10.0.11 and greater than or equal to 10.x OR Check for vulnerable Mozilla Thunderbird ESR Mozilla Thunderbird ESR is installed AND Mozilla Thunderbird ESR version is less than 10.0.11 and greater than or equal to 10.x

Definition Id: oval:org.mitre.oval:def:17602

Oval ID:	oval:org.mitre.oval:def:17602
Title:	USN-1636-1 -- thunderbird vulnerabilities
Description:	Multiple security issues were fixed in Thunderbird.
Family:	unix	Class:	patch
Reference(s):	USN-1636-1 CVE-2012-5842 CVE-2012-5843 CVE-2012-4202 CVE-2012-4201 CVE-2012-5836 CVE-2012-4204 CVE-2012-4205 CVE-2012-4208 CVE-2012-5841 CVE-2012-4207 CVE-2012-4209 CVE-2012-4214 CVE-2012-4215 CVE-2012-4216 CVE-2012-5829 CVE-2012-5839 CVE-2012-5840 CVE-2012-4212 CVE-2012-4213 CVE-2012-4217 CVE-2012-4218 CVE-2012-5830 CVE-2012-5833 CVE-2012-5835 CVE-2012-5838	Version:	7
Platform(s):	Ubuntu 12.10 Ubuntu 12.04 Ubuntu 11.10 Ubuntu 10.04	Product(s):	thunderbird
Definition Synopsis:
Release section Ubuntu 12.10 is installed AND thunderbird DPKG is earlier than 17.0+build2-0ubuntu0.12.10.1 AND Release section Ubuntu 12.04 is installed AND thunderbird DPKG is earlier than 17.0+build2-0ubuntu0.12.04.1 AND Release section Ubuntu 11.10 is installed AND thunderbird DPKG is earlier than 17.0+build2-0ubuntu0.11.10.1 AND Release section Ubuntu 10.04 is installed AND thunderbird DPKG is earlier than 17.0+build2-0ubuntu0.10.04.1

Definition Id: oval:org.mitre.oval:def:17786

Oval ID:	oval:org.mitre.oval:def:17786
Title:	USN-1638-3 -- firefox regressions
Description:	Regressions were introduced in the last Firefox update.
Family:	unix	Class:	patch
Reference(s):	USN-1638-3 CVE-2012-5842 CVE-2012-5843 CVE-2012-4202 CVE-2012-4201 CVE-2012-5836 CVE-2012-4203 CVE-2012-4204 CVE-2012-4205 CVE-2012-4208 CVE-2012-5841 CVE-2012-4207 CVE-2012-5837 CVE-2012-4209 CVE-2012-4210 CVE-2012-4214 CVE-2012-4215 CVE-2012-4216 CVE-2012-5829 CVE-2012-5839 CVE-2012-5840 CVE-2012-4212 CVE-2012-4213 CVE-2012-4217 CVE-2012-4218 CVE-2012-5830 CVE-2012-5833 CVE-2012-5835 CVE-2012-5838	Version:	7
Platform(s):	Ubuntu 12.10 Ubuntu 12.04 Ubuntu 11.10 Ubuntu 10.04	Product(s):	firefox
Definition Synopsis:
Release section Ubuntu 12.10 is installed AND firefox DPKG is earlier than 17.0.1+build1-0ubuntu0.12.10.1 AND Release section Ubuntu 12.04 is installed AND firefox DPKG is earlier than 17.0.1+build1-0ubuntu0.12.04.1 AND Release section Ubuntu 11.10 is installed AND firefox DPKG is earlier than 17.0.1+build1-0ubuntu0.11.10.1 AND Release section Ubuntu 10.04 is installed AND firefox DPKG is earlier than 17.0.1+build1-0ubuntu0.10.04.1

Definition Id: oval:org.mitre.oval:def:17824

Oval ID:	oval:org.mitre.oval:def:17824
Title:	USN-1638-1 -- firefox vulnerabilities
Description:	Several security issues were fixed in Firefox.
Family:	unix	Class:	patch
Reference(s):	USN-1638-1 CVE-2012-5842 CVE-2012-5843 CVE-2012-4202 CVE-2012-4201 CVE-2012-5836 CVE-2012-4203 CVE-2012-4204 CVE-2012-4205 CVE-2012-4208 CVE-2012-5841 CVE-2012-4207 CVE-2012-5837 CVE-2012-4209 CVE-2012-4210 CVE-2012-4214 CVE-2012-4215 CVE-2012-4216 CVE-2012-5829 CVE-2012-5839 CVE-2012-5840 CVE-2012-4212 CVE-2012-4213 CVE-2012-4217 CVE-2012-4218 CVE-2012-5830 CVE-2012-5833 CVE-2012-5835 CVE-2012-5838	Version:	7
Platform(s):	Ubuntu 12.10 Ubuntu 12.04 Ubuntu 11.10 Ubuntu 10.04	Product(s):	firefox
Definition Synopsis:
Release section Ubuntu 12.10 is installed AND firefox DPKG is earlier than 17.0+build2-0ubuntu0.12.10.1 AND Release section Ubuntu 12.04 is installed AND firefox DPKG is earlier than 17.0+build2-0ubuntu0.12.04.1 AND Release section Ubuntu 11.10 is installed AND firefox DPKG is earlier than 17.0+build2-0ubuntu0.11.10.1 AND Release section Ubuntu 10.04 is installed AND firefox DPKG is earlier than 17.0+build2-0ubuntu0.10.04.1

Definition Id: oval:org.mitre.oval:def:17966

Oval ID:	oval:org.mitre.oval:def:17966
Title:	USN-1638-2 -- ubufox update
Description:	This update provides compatible ubufox packages for the latest Firefox.
Family:	unix	Class:	patch
Reference(s):	USN-1638-2 CVE-2012-5842 CVE-2012-5843 CVE-2012-4202 CVE-2012-4201 CVE-2012-5836 CVE-2012-4203 CVE-2012-4204 CVE-2012-4205 CVE-2012-4208 CVE-2012-5841 CVE-2012-4207 CVE-2012-4209 CVE-2012-4210 CVE-2012-4214 CVE-2012-4215 CVE-2012-4216 CVE-2012-5829 CVE-2012-5839 CVE-2012-5840 CVE-2012-4212 CVE-2012-4213 CVE-2012-4217 CVE-2012-4218 CVE-2012-5830 CVE-2012-5833 CVE-2012-5835 CVE-2012-5838	Version:	7
Platform(s):	Ubuntu 12.10 Ubuntu 12.04 Ubuntu 11.10 Ubuntu 10.04	Product(s):	ubufox
Definition Synopsis:
Release section Ubuntu 12.10 is installed AND xul-ext-ubufox DPKG is earlier than 2.6-0ubuntu0.12.10.1 AND Release section Ubuntu 12.04 is installed AND xul-ext-ubufox DPKG is earlier than 2.6-0ubuntu0.12.04.1 AND Release section Ubuntu 11.10 is installed AND xul-ext-ubufox DPKG is earlier than 2.6-0ubuntu0.11.10.1 AND Release section Ubuntu 10.04 is installed AND xul-ext-ubufox DPKG is earlier than 2.6-0ubuntu0.10.04.1

Definition Id: oval:org.mitre.oval:def:18575

Oval ID:	oval:org.mitre.oval:def:18575
Title:	DSA-2583-1 iceweasel - several
Description:	Multiple vulnerabilities have been found in Iceweasel, the Debian web browser based on Mozilla Firefox:
Family:	unix	Class:	patch
Reference(s):	DSA-2583-1 CVE-2012-4201 CVE-2012-4207 CVE-2012-4216 CVE-2012-5829 CVE-2012-5842	Version:	7
Platform(s):	Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	iceweasel
Definition Synopsis:
Debian 6.0 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND iceweasel DPKG is earlier than 3.5.16-20

Definition Id: oval:org.mitre.oval:def:19855

Oval ID:	oval:org.mitre.oval:def:19855
Title:	DSA-2588-1 icedove - several
Description:	Multiple vulnerabilities have been found in Icedove, Debian's version of the Mozilla Thunderbird mail and news client.
Family:	unix	Class:	patch
Reference(s):	DSA-2588-1 CVE-2012-4201 CVE-2012-4207 CVE-2012-4216 CVE-2012-5829 CVE-2012-5842	Version:	5
Platform(s):	Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	icedove
Definition Synopsis:
Debian 6.0 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND icedove DPKG is earlier than 0:3.0.11-1+squeeze15

Definition Id: oval:org.mitre.oval:def:20112

Oval ID:	oval:org.mitre.oval:def:20112
Title:	DSA-2584-1 iceape - several
Description:	Multiple vulnerabilities have been found in Iceape, the Debian Internet suite based on Mozilla Seamonkey.
Family:	unix	Class:	patch
Reference(s):	DSA-2584-1 CVE-2012-4201 CVE-2012-4207 CVE-2012-4216 CVE-2012-5829 CVE-2012-5842	Version:	5
Platform(s):	Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	iceape
Definition Synopsis:
Debian 6.0 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND iceape DPKG is earlier than 0:2.0.11-17

Definition Id: oval:org.mitre.oval:def:21071

Oval ID:	oval:org.mitre.oval:def:21071
Title:	RHSA-2012:1482: firefox security update (Critical)
Description:	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Family:	unix	Class:	patch
Reference(s):	RHSA-2012:1482-01 CESA-2012:1482 CVE-2012-4201 CVE-2012-4202 CVE-2012-4207 CVE-2012-4209 CVE-2012-4210 CVE-2012-4214 CVE-2012-4215 CVE-2012-4216 CVE-2012-5829 CVE-2012-5830 CVE-2012-5833 CVE-2012-5835 CVE-2012-5839 CVE-2012-5840 CVE-2012-5841 CVE-2012-5842	Version:	211
Platform(s):	Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6 CentOS Linux 5 CentOS Linux 6	Product(s):	firefox xulrunner
Definition Synopsis:
Redhat 5 and Centos 5 section Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x AND Packages section xulrunner-devel is earlier than 0:10.0.11-1.el5_8 AND xulrunner is earlier than 0:10.0.11-1.el5_8 OR Centos 5 section The operating system installed on the system is CentOS Linux 5.x AND firefox is earlier than 0:10.0.11-1.el5.centos OR Redhat 5 section The operating system installed on the system is Red Hat Enterprise Linux 5 AND firefox is earlier than 0:10.0.11-1.el5_8 OR Redhat 6 section The operating system installed on the system is Red Hat Enterprise Linux 6 AND Packages section xulrunner-devel is earlier than 0:10.0.11-1.el6_3 AND xulrunner is earlier than 0:10.0.11-1.el6_3 AND firefox is earlier than 0:10.0.11-1.el6_3 OR Centos 6 section The operating system installed on the system is CentOS Linux 6.x AND Packages section xulrunner-devel is earlier than 0:10.0.11-1.el6.centos AND xulrunner is earlier than 0:10.0.11-1.el6.centos AND firefox is earlier than 0:10.0.11-1.el6.centos

Definition Id: oval:org.mitre.oval:def:21630

Oval ID:	oval:org.mitre.oval:def:21630
Title:	RHSA-2012:1483: thunderbird security update (Critical)
Description:	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Family:	unix	Class:	patch
Reference(s):	RHSA-2012:1483-01 CESA-2012:1483 CVE-2012-4201 CVE-2012-4202 CVE-2012-4207 CVE-2012-4209 CVE-2012-4214 CVE-2012-4215 CVE-2012-4216 CVE-2012-5829 CVE-2012-5830 CVE-2012-5833 CVE-2012-5835 CVE-2012-5839 CVE-2012-5840 CVE-2012-5841 CVE-2012-5842	Version:	198
Platform(s):	Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 5 CentOS Linux 5 CentOS Linux 6	Product(s):	thunderbird
Definition Synopsis:
Redhat 5 section The operating system installed on the system is Red Hat Enterprise Linux 5 AND thunderbird is earlier than 0:10.0.11-1.el5_8 OR Centos 5 section The operating system installed on the system is CentOS Linux 5.x AND thunderbird is earlier than 0:10.0.11-1.el5.centos OR Redhat 6 section thunderbird is earlier than 0:10.0.11-1.el6_3 AND The operating system installed on the system is Red Hat Enterprise Linux 6 OR Centos 6 section thunderbird is earlier than 0:10.0.11-1.el6.centos AND The operating system installed on the system is CentOS Linux 6.x

Definition Id: oval:org.mitre.oval:def:23148

Oval ID:	oval:org.mitre.oval:def:23148
Title:	DEPRECATED: ELSA-2012:1483: thunderbird security update (Critical)
Description:	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:1483-01 CVE-2012-4201 CVE-2012-4202 CVE-2012-4207 CVE-2012-4209 CVE-2012-4214 CVE-2012-4215 CVE-2012-4216 CVE-2012-5829 CVE-2012-5830 CVE-2012-5833 CVE-2012-5835 CVE-2012-5839 CVE-2012-5840 CVE-2012-5841 CVE-2012-5842	Version:	66
Platform(s):	Oracle Linux 6 Oracle Linux 5	Product(s):	thunderbird
Definition Synopsis:
rpm test Oracle Linux 5.x AND thunderbird is earlier than 0:10.0.11-1.el5_8 OR rpm test thunderbird is earlier than 0:10.0.11-1.el6_3 AND Oracle Linux 6.x

Definition Id: oval:org.mitre.oval:def:23314

Oval ID:	oval:org.mitre.oval:def:23314
Title:	ELSA-2012:1483: thunderbird security update (Critical)
Description:	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:1483-01 CVE-2012-4201 CVE-2012-4202 CVE-2012-4207 CVE-2012-4209 CVE-2012-4214 CVE-2012-4215 CVE-2012-4216 CVE-2012-5829 CVE-2012-5830 CVE-2012-5833 CVE-2012-5835 CVE-2012-5839 CVE-2012-5840 CVE-2012-5841 CVE-2012-5842	Version:	65
Platform(s):	Oracle Linux 6 Oracle Linux 5	Product(s):	thunderbird
Definition Synopsis:
rpm test Oracle Linux 5.x AND thunderbird is earlier than 0:10.0.11-1.el5_8 OR rpm test thunderbird is earlier than 0:10.0.11-1.el6_3 AND Oracle Linux 6.x

Definition Id: oval:org.mitre.oval:def:23474

Oval ID:	oval:org.mitre.oval:def:23474
Title:	DEPRECATED: ELSA-2012:1482: firefox security update (Critical)
Description:	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:1482-01 CVE-2012-4201 CVE-2012-4202 CVE-2012-4207 CVE-2012-4209 CVE-2012-4210 CVE-2012-4214 CVE-2012-4215 CVE-2012-4216 CVE-2012-5829 CVE-2012-5830 CVE-2012-5833 CVE-2012-5835 CVE-2012-5839 CVE-2012-5840 CVE-2012-5841 CVE-2012-5842	Version:	70
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	firefox xulrunner
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test xulrunner-devel is earlier than 0:10.0.11-1.el5_8 AND xulrunner is earlier than 0:10.0.11-1.el5_8 AND firefox is earlier than 0:10.0.11-1.el5_8 OR rpm test Oracle Linux 6.x AND rpm test xulrunner-devel is earlier than 0:10.0.11-1.el6_3 AND xulrunner is earlier than 0:10.0.11-1.el6_3 AND firefox is earlier than 0:10.0.11-1.el6_3

Definition Id: oval:org.mitre.oval:def:23820

Oval ID:	oval:org.mitre.oval:def:23820
Title:	ELSA-2012:1482: firefox security update (Critical)
Description:	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:1482-01 CVE-2012-4201 CVE-2012-4202 CVE-2012-4207 CVE-2012-4209 CVE-2012-4210 CVE-2012-4214 CVE-2012-4215 CVE-2012-4216 CVE-2012-5829 CVE-2012-5830 CVE-2012-5833 CVE-2012-5835 CVE-2012-5839 CVE-2012-5840 CVE-2012-5841 CVE-2012-5842	Version:	69
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	firefox xulrunner
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test xulrunner-devel is earlier than 0:10.0.11-1.el5_8 AND xulrunner is earlier than 0:10.0.11-1.el5_8 AND firefox is earlier than 0:10.0.11-1.el5_8 OR rpm test Oracle Linux 6.x AND rpm test xulrunner-devel is earlier than 0:10.0.11-1.el6_3 AND xulrunner is earlier than 0:10.0.11-1.el6_3 AND firefox is earlier than 0:10.0.11-1.el6_3

Definition Id: oval:org.mitre.oval:def:26852

Oval ID:	oval:org.mitre.oval:def:26852
Title:	DEPRECATED: ELSA-2012-1483 -- thunderbird security update (critical)
Description:	[10.0.11-1.0.1.el6_3] - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js [10.0.11-1] - Update to 10.0.11 ESR
Family:	unix	Class:	patch
Reference(s):	ELSA-2012-1483 CVE-2012-4201 CVE-2012-4202 CVE-2012-4207 CVE-2012-4209 CVE-2012-4214 CVE-2012-4215 CVE-2012-4216 CVE-2012-5829 CVE-2012-5830 CVE-2012-5833 CVE-2012-5835 CVE-2012-5839 CVE-2012-5840 CVE-2012-5841 CVE-2012-5842	Version:	4
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	thunderbird
Definition Synopsis:
Oracle Linux 5 release section Oracle Linux 5.x AND thunderbird is earlier than 0:10.0.11-1.0.1.el5_8 AND Oracle Linux 6 release section Oracle Linux 6.x AND thunderbird is earlier than 0:10.0.11-1.0.1.el6_3

Definition Id: oval:org.mitre.oval:def:27829

Oval ID:	oval:org.mitre.oval:def:27829
Title:	DEPRECATED: ELSA-2012-1482 -- firefox security update (critical)
Description:	firefox [10.0.11-1.0.1.el6_3] - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones [10.0.11-1] - Update to 10.0.11 ESR xulrunner [10.0.11-1.0.1.el6_3] - Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js [10.0.11-1] - Update to 10.0.11 ESR
Family:	unix	Class:	patch
Reference(s):	ELSA-2012-1482 CVE-2012-4201 CVE-2012-4202 CVE-2012-4207 CVE-2012-4209 CVE-2012-4210 CVE-2012-4214 CVE-2012-4215 CVE-2012-4216 CVE-2012-5829 CVE-2012-5830 CVE-2012-5833 CVE-2012-5835 CVE-2012-5839 CVE-2012-5840 CVE-2012-5841 CVE-2012-5842	Version:	4
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	firefox xulrunner
Definition Synopsis:
Oracle Linux 5 release section Oracle Linux 5.x Packages match section firefox is earlier than 0:10.0.11-1.0.1.el5_8 AND xulrunner is earlier than 0:10.0.11-1.0.1.el5_8 AND xulrunner-devel is earlier than 0:10.0.11-1.0.1.el5_8 AND Oracle Linux 6 release section Oracle Linux 6.x Packages match section firefox is earlier than 0:10.0.11-1.0.1.el6_3 AND xulrunner is earlier than 0:10.0.11-1.0.1.el6_3 AND xulrunner-devel is earlier than 0:10.0.11-1.0.1.el6_3

CPE : Common Platform Enumeration

Type	Description	Count
Application	Mozilla Firefox cpe:2.3:a:mozilla:firefox:16.0.2:::::::* cpe:2.3:a:mozilla:firefox:16.0.1:::::::* cpe:2.3:a:mozilla:firefox:16.0:::::-:: cpe:2.3:a:mozilla:firefox:15.0.1:::::::* cpe:2.3:a:mozilla:firefox:15.0:::::-:: cpe:2.3:a:mozilla:firefox:14.0.1:::::::* cpe:2.3:a:mozilla:firefox:14.0:::::-:: cpe:2.3:a:mozilla:firefox:13.0.1:::::::* cpe:2.3:a:mozilla:firefox:13.0:::::::* cpe:2.3:a:mozilla:firefox:12.0:-:::::: cpe:2.3:a:mozilla:firefox:12.0:beta6:::::: cpe:2.3:a:mozilla:firefox:11.0:::::::* cpe:2.3:a:mozilla:firefox:10.0.9:::::::* cpe:2.3:a:mozilla:firefox:10.0.8:::::::* cpe:2.3:a:mozilla:firefox:10.0.7:::::::* cpe:2.3:a:mozilla:firefox:10.0.6:::::::* cpe:2.3:a:mozilla:firefox:10.0.5:::::::* cpe:2.3:a:mozilla:firefox:10.0.4:::::::* cpe:2.3:a:mozilla:firefox:10.0.3:::::::* cpe:2.3:a:mozilla:firefox:10.0.2:::::::* cpe:2.3:a:mozilla:firefox:10.0.12:::::::* cpe:2.3:a:mozilla:firefox:10.0.11:::::::* cpe:2.3:a:mozilla:firefox:10.0.10:::::::* cpe:2.3:a:mozilla:firefox:10.0.1:::::::* cpe:2.3:a:mozilla:firefox:10.0:::::::* cpe:2.3:a:mozilla:firefox:9.0.1:::::::* cpe:2.3:a:mozilla:firefox:9.0:::::::* cpe:2.3:a:mozilla:firefox:8.0.1:::::::* cpe:2.3:a:mozilla:firefox:8.0:::::::* cpe:2.3:a:mozilla:firefox:7.0.1:::::::* cpe:2.3:a:mozilla:firefox:7.0:::::::* cpe:2.3:a:mozilla:firefox:6.0.2:::::::* cpe:2.3:a:mozilla:firefox:6.0.1:::::::* cpe:2.3:a:mozilla:firefox:6.0:::::::* cpe:2.3:a:mozilla:firefox:5.0.1:::::::* cpe:2.3:a:mozilla:firefox:5.0:::::::* cpe:2.3:a:mozilla:firefox:4.0.1:::::::* cpe:2.3:a:mozilla:firefox:4.0:beta1:::::: cpe:2.3:a:mozilla:firefox:4.0:beta6:::::: cpe:2.3:a:mozilla:firefox:4.0:beta3:::::: cpe:2.3:a:mozilla:firefox:4.0:beta5:::::: cpe:2.3:a:mozilla:firefox:4.0:beta4:::::: cpe:2.3:a:mozilla:firefox:4.0:beta2:::::: cpe:2.3:a:mozilla:firefox:4.0:beta12:::::: cpe:2.3:a:mozilla:firefox:4.0:-:::::: cpe:2.3:a:mozilla:firefox:4.0:beta11:::::: cpe:2.3:a:mozilla:firefox:4.0:beta10:::::: cpe:2.3:a:mozilla:firefox:4.0:beta7:::::: cpe:2.3:a:mozilla:firefox:4.0:beta8:::::: cpe:2.3:a:mozilla:firefox:4.0:beta9:::::: cpe:2.3:a:mozilla:firefox:3.7:a1_pre:::::: cpe:2.3:a:mozilla:firefox:3.7:alpha1:::::: cpe:2.3:a:mozilla:firefox:3.7:alpha2:::::: cpe:2.3:a:mozilla:firefox:3.7:a1_prerelease:::::: cpe:2.3:a:mozilla:firefox:3.6.9:::::::* cpe:2.3:a:mozilla:firefox:3.6.8:::::::* cpe:2.3:a:mozilla:firefox:3.6.7:::::::* cpe:2.3:a:mozilla:firefox:3.6.6:::::::* cpe:2.3:a:mozilla:firefox:3.6.4:::::::* cpe:2.3:a:mozilla:firefox:3.6.3:::::::* cpe:2.3:a:mozilla:firefox:3.6.28:::::::* cpe:2.3:a:mozilla:firefox:3.6.27:::::::* cpe:2.3:a:mozilla:firefox:3.6.26:::::::* cpe:2.3:a:mozilla:firefox:3.6.25:::::::* cpe:2.3:a:mozilla:firefox:3.6.24:::::::* cpe:2.3:a:mozilla:firefox:3.6.23:::::::* cpe:2.3:a:mozilla:firefox:3.6.22:::::::* cpe:2.3:a:mozilla:firefox:3.6.21:::::::* cpe:2.3:a:mozilla:firefox:3.6.20:::::::* cpe:2.3:a:mozilla:firefox:3.6.2:::::::* cpe:2.3:a:mozilla:firefox:3.6.19:::::::* cpe:2.3:a:mozilla:firefox:3.6.18:::::::* cpe:2.3:a:mozilla:firefox:3.6.17:::::::* cpe:2.3:a:mozilla:firefox:3.6.16:::::::* cpe:2.3:a:mozilla:firefox:3.6.15:::::::* cpe:2.3:a:mozilla:firefox:3.6.14:::::::* cpe:2.3:a:mozilla:firefox:3.6.13:::::::* cpe:2.3:a:mozilla:firefox:3.6.12:::::::* cpe:2.3:a:mozilla:firefox:3.6.11:::::::* cpe:2.3:a:mozilla:firefox:3.6.10:::::::* cpe:2.3:a:mozilla:firefox:3.6.1:::::::* cpe:2.3:a:mozilla:firefox:3.6:::::::* cpe:2.3:a:mozilla:firefox:3.6:a1_pre:::::: cpe:2.3:a:mozilla:firefox:3.6:a1:-:linux:::: cpe:2.3:a:mozilla:firefox:3.6:beta2:::::: cpe:2.3:a:mozilla:firefox:3.6:beta1:::::: cpe:2.3:a:mozilla:firefox:3.6:a1::linux::::* cpe:2.3:a:mozilla:firefox:3.6:a1:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:3.6:a1:::::: cpe:2.3:a:mozilla:firefox:3.6:a1_prerelease:::::: cpe:2.3:a:mozilla:firefox:3.5.9:::::::* cpe:2.3:a:mozilla:firefox:3.5.8:::::::* cpe:2.3:a:mozilla:firefox:3.5.7:::::::* cpe:2.3:a:mozilla:firefox:3.5.6:::::::* cpe:2.3:a:mozilla:firefox:3.5.5:::::::* cpe:2.3:a:mozilla:firefox:3.5.4:::::::* cpe:2.3:a:mozilla:firefox:3.5.3:::::::* cpe:2.3:a:mozilla:firefox:3.5.2:::::::* cpe:2.3:a:mozilla:firefox:3.5.2:-:linux:::::* cpe:2.3:a:mozilla:firefox:3.5.2::linux::::: cpe:2.3:a:mozilla:firefox:3.5.2::~~~linux~~::::: cpe:2.3:a:mozilla:firefox:3.5.2:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:3.5.19:::::::* cpe:2.3:a:mozilla:firefox:3.5.18:::::::* cpe:2.3:a:mozilla:firefox:3.5.17:::::::* cpe:2.3:a:mozilla:firefox:3.5.16:::::::* cpe:2.3:a:mozilla:firefox:3.5.15:::::::* cpe:2.3:a:mozilla:firefox:3.5.14:::::::* cpe:2.3:a:mozilla:firefox:3.5.13:::::::* cpe:2.3:a:mozilla:firefox:3.5.12:::::::* cpe:2.3:a:mozilla:firefox:3.5.11:::::::* cpe:2.3:a:mozilla:firefox:3.5.10:::::::* cpe:2.3:a:mozilla:firefox:3.5.1:::::::* cpe:2.3:a:mozilla:firefox:3.5.1:-:linux:::::* cpe:2.3:a:mozilla:firefox:3.5.1:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:3.5:::::::* cpe:2.3:a:mozilla:firefox:3.5:-:linux:::::* cpe:2.3:a:mozilla:firefox:3.5:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:3.2:beta2:::::: cpe:2.3:a:mozilla:firefox:3.2:beta3:::::: cpe:2.3:a:mozilla:firefox:3.2:beta1:::::: cpe:2.3:a:mozilla:firefox:3.1:beta1:::::: cpe:2.3:a:mozilla:firefox:3.0beta5:::::::* cpe:2.3:a:mozilla:firefox:3.0.9:::::::* cpe:2.3:a:mozilla:firefox:3.0.9:-:linux:::::* cpe:2.3:a:mozilla:firefox:3.0.9:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:3.0.8:::::::* cpe:2.3:a:mozilla:firefox:3.0.8:-:linux:::::* cpe:2.3:a:mozilla:firefox:3.0.8:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:3.0.7:::::::* cpe:2.3:a:mozilla:firefox:3.0.7:-:linux:::::* cpe:2.3:a:mozilla:firefox:3.0.7:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:3.0.6:::::::* cpe:2.3:a:mozilla:firefox:3.0.6:-:linux:::::* cpe:2.3:a:mozilla:firefox:3.0.6:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:3.0.5:::::::* cpe:2.3:a:mozilla:firefox:3.0.5:-:linux:::::* cpe:2.3:a:mozilla:firefox:3.0.5:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:3.0.4:::::::* cpe:2.3:a:mozilla:firefox:3.0.4:-:linux:::::* cpe:2.3:a:mozilla:firefox:3.0.4:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:3.0.3:::::::* cpe:2.3:a:mozilla:firefox:3.0.3:-:linux:::::* cpe:2.3:a:mozilla:firefox:3.0.3:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:3.0.2:::::::* cpe:2.3:a:mozilla:firefox:3.0.2:-:linux:::::* cpe:2.3:a:mozilla:firefox:3.0.2:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:3.0.19:::::::* cpe:2.3:a:mozilla:firefox:3.0.18:::::::* cpe:2.3:a:mozilla:firefox:3.0.17:::::::* cpe:2.3:a:mozilla:firefox:3.0.16:::::::* cpe:2.3:a:mozilla:firefox:3.0.15:::::::* cpe:2.3:a:mozilla:firefox:3.0.14:::::::* cpe:2.3:a:mozilla:firefox:3.0.13:::::::* cpe:2.3:a:mozilla:firefox:3.0.13:-:linux:::::* cpe:2.3:a:mozilla:firefox:3.0.13:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:3.0.12:::::::* cpe:2.3:a:mozilla:firefox:3.0.12:-:linux:::::* cpe:2.3:a:mozilla:firefox:3.0.12:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:3.0.11:::::::* cpe:2.3:a:mozilla:firefox:3.0.11:-:linux:::::* cpe:2.3:a:mozilla:firefox:3.0.11:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:3.0.10:::::::* cpe:2.3:a:mozilla:firefox:3.0.10:-:linux:::::* cpe:2.3:a:mozilla:firefox:3.0.10:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:3.0.1:::::::* cpe:2.3:a:mozilla:firefox:3.0.1:-:linux:::::* cpe:2.3:a:mozilla:firefox:3.0.1:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:3.0:-:::::: cpe:2.3:a:mozilla:firefox:3.0:alpha:::::: cpe:2.3:a:mozilla:firefox:3.0:beta5:::::: cpe:2.3:a:mozilla:firefox:3.0:beta2:::::: cpe:2.3:a:mozilla:firefox:3.0:-:linux:::::* cpe:2.3:a:mozilla:firefox:3.0:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.9:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.9:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.9:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.8:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.8:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.8:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.7:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.7:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.7:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.6:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.6:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.6:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.5:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.5:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.5:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.4:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.4:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.4:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.3:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.3:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.3:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.21:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.20:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.20:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.20:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.2:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.2:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.2:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.19:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.19:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.19:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.18:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.18:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.18:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.17:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.17:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.17:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.16:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.16:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.16:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.15:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.15:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.15:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.14:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.14:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.14:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.13:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.13:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.13:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.12:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.12:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.12:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.11:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.11:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.11:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.10:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.10:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.10:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0.0.1:::::::* cpe:2.3:a:mozilla:firefox:2.0.0.1:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0.0.1:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:2.0_8:::::::* cpe:2.3:a:mozilla:firefox:2.0_.9:::::::* cpe:2.3:a:mozilla:firefox:2.0_.7:::::::* cpe:2.3:a:mozilla:firefox:2.0_.6:::::::* cpe:2.3:a:mozilla:firefox:2.0_.5:::::::* cpe:2.3:a:mozilla:firefox:2.0_.4:::::::* cpe:2.3:a:mozilla:firefox:2.0_.10:::::::* cpe:2.3:a:mozilla:firefox:2.0_.1:::::::* cpe:2.3:a:mozilla:firefox:2.0:::::::* cpe:2.3:a:mozilla:firefox:2.0:beta1:::::: cpe:2.3:a:mozilla:firefox:2.0:beta_1:::::: cpe:2.3:a:mozilla:firefox:2.0:rc3:::::: cpe:2.3:a:mozilla:firefox:2.0:rc2:::::: cpe:2.3:a:mozilla:firefox:2.0:-:linux:::::* cpe:2.3:a:mozilla:firefox:2.0:-:~~~linux~~:::::* cpe:2.3:a:mozilla:firefox:1.8:::::::* cpe:2.3:a:mozilla:firefox:1.5.8:::::::* cpe:2.3:a:mozilla:firefox:1.5.7:::::::* cpe:2.3:a:mozilla:firefox:1.5.6:::::::* cpe:2.3:a:mozilla:firefox:1.5.5:::::::* cpe:2.3:a:mozilla:firefox:1.5.4:::::::* cpe:2.3:a:mozilla:firefox:1.5.3:::::::* cpe:2.3:a:mozilla:firefox:1.5.2:::::::* cpe:2.3:a:mozilla:firefox:1.5.1:::::::* cpe:2.3:a:mozilla:firefox:1.5.0.9:::::::* cpe:2.3:a:mozilla:firefox:1.5.0.8:::::::* cpe:2.3:a:mozilla:firefox:1.5.0.7:::::::* cpe:2.3:a:mozilla:firefox:1.5.0.6:::::::* cpe:2.3:a:mozilla:firefox:1.5.0.5:::::::* cpe:2.3:a:mozilla:firefox:1.5.0.4:::::::* cpe:2.3:a:mozilla:firefox:1.5.0.3:::::::* cpe:2.3:a:mozilla:firefox:1.5.0.2:::::::* cpe:2.3:a:mozilla:firefox:1.5.0.12:::::::* cpe:2.3:a:mozilla:firefox:1.5.0.11:::::::* cpe:2.3:a:mozilla:firefox:1.5.0.10:::::::* cpe:2.3:a:mozilla:firefox:1.5.0.1:::::::* cpe:2.3:a:mozilla:firefox:1.5:-:::::: cpe:2.3:a:mozilla:firefox:1.5:beta2:::::: cpe:2.3:a:mozilla:firefox:1.5:beta1:::::: cpe:2.3:a:mozilla:firefox:1.4.1:::::::* cpe:2.3:a:mozilla:firefox:1.0.8:::::::* cpe:2.3:a:mozilla:firefox:1.0.7:::::::* cpe:2.3:a:mozilla:firefox:1.0.6:::::::* cpe:2.3:a:mozilla:firefox:1.0.6::linux::::: cpe:2.3:a:mozilla:firefox:1.0.5:::::::* cpe:2.3:a:mozilla:firefox:1.0.4:::::::* cpe:2.3:a:mozilla:firefox:1.0.3:::::::* cpe:2.3:a:mozilla:firefox:1.0.2:::::::* cpe:2.3:a:mozilla:firefox:1.0.1:::::::* cpe:2.3:a:mozilla:firefox:1.0:preview_release:::::: cpe:2.3:a:mozilla:firefox:1.0:-:::::: cpe:2.3:a:mozilla:firefox:0.9.3:::::::* cpe:2.3:a:mozilla:firefox:0.9.2:::::::* cpe:2.3:a:mozilla:firefox:0.9.1:::::::* cpe:2.3:a:mozilla:firefox:0.9_rc:::::::* cpe:2.3:a:mozilla:firefox:0.9:rc:::::: cpe:2.3:a:mozilla:firefox:0.9:::::::* cpe:2.3:a:mozilla:firefox:0.8:::::::* cpe:2.3:a:mozilla:firefox:0.7.1:::::::* cpe:2.3:a:mozilla:firefox:0.7:::::::* cpe:2.3:a:mozilla:firefox:0.6.1:::::::* cpe:2.3:a:mozilla:firefox:0.6:::::::* cpe:2.3:a:mozilla:firefox:0.5:::::::* cpe:2.3:a:mozilla:firefox:0.4:::::::* cpe:2.3:a:mozilla:firefox:0.3:::::::* cpe:2.3:a:mozilla:firefox:0.2:::::::* cpe:2.3:a:mozilla:firefox:0.10.1:::::::* cpe:2.3:a:mozilla:firefox:0.10:::::::* cpe:2.3:a:mozilla:firefox:0.1:::::::* cpe:2.3:a:mozilla:firefox:::::::: cpe:2.3:a:mozilla:firefox:::::::x86:* cpe:2.3:a:mozilla:firefox::::::x86::* cpe:2.3:a:mozilla:firefox::::::iphone_os::* cpe:2.3:a:mozilla:firefox::::::-::* cpe:2.3:a:mozilla:firefox::::::android::* cpe:2.3:a:mozilla:firefox:::::android:::* cpe:2.3:a:mozilla:firefox:-:::::::* cpe:2.3:a:mozilla:firefox:-:::::iphone_os::	313
Application	Mozilla Firefox Esr cpe:2.3:a:mozilla:firefox_esr:10.0.9:::::::* cpe:2.3:a:mozilla:firefox_esr:10.0.8:::::::* cpe:2.3:a:mozilla:firefox_esr:10.0.7:::::::* cpe:2.3:a:mozilla:firefox_esr:10.0.6:::::::* cpe:2.3:a:mozilla:firefox_esr:10.0.5:::::::* cpe:2.3:a:mozilla:firefox_esr:10.0.4:::::::* cpe:2.3:a:mozilla:firefox_esr:10.0.3:::::::* cpe:2.3:a:mozilla:firefox_esr:10.0.2:::::::* cpe:2.3:a:mozilla:firefox_esr:10.0.10:::::::* cpe:2.3:a:mozilla:firefox_esr:10.0.1:::::::* cpe:2.3:a:mozilla:firefox_esr:10.0:::::::* cpe:2.3:a:mozilla:firefox_esr:::::::: cpe:2.3:a:mozilla:firefox_esr:::::::x86:* cpe:2.3:a:mozilla:firefox_esr:-:::::::*	14
Application	Mozilla Seamonkey cpe:2.3:a:mozilla:seamonkey:2.9.1:::::::* cpe:2.3:a:mozilla:seamonkey:2.9:beta1:::::: cpe:2.3:a:mozilla:seamonkey:2.9:beta2:::::: cpe:2.3:a:mozilla:seamonkey:2.9:beta3:::::: cpe:2.3:a:mozilla:seamonkey:2.9:::::::* cpe:2.3:a:mozilla:seamonkey:2.9:beta4:::::: cpe:2.3:a:mozilla:seamonkey:2.8:beta2:::::: cpe:2.3:a:mozilla:seamonkey:2.8:beta5:::::: cpe:2.3:a:mozilla:seamonkey:2.8:beta4:::::: cpe:2.3:a:mozilla:seamonkey:2.8:beta6:::::: cpe:2.3:a:mozilla:seamonkey:2.8:beta1:::::: cpe:2.3:a:mozilla:seamonkey:2.8:::::::* cpe:2.3:a:mozilla:seamonkey:2.8:beta3:::::: cpe:2.3:a:mozilla:seamonkey:2.7.2:::::::* cpe:2.3:a:mozilla:seamonkey:2.7.1:::::::* cpe:2.3:a:mozilla:seamonkey:2.7:beta5:::::: cpe:2.3:a:mozilla:seamonkey:2.7:beta2:::::: cpe:2.3:a:mozilla:seamonkey:2.7:beta1:::::: cpe:2.3:a:mozilla:seamonkey:2.7:beta3:::::: cpe:2.3:a:mozilla:seamonkey:2.7:::::::* cpe:2.3:a:mozilla:seamonkey:2.7:beta4:::::: cpe:2.3:a:mozilla:seamonkey:2.6.1:::::::* cpe:2.3:a:mozilla:seamonkey:2.6:beta3:::::: cpe:2.3:a:mozilla:seamonkey:2.6:::::::* cpe:2.3:a:mozilla:seamonkey:2.6:beta1:::::: cpe:2.3:a:mozilla:seamonkey:2.6:beta4:::::: cpe:2.3:a:mozilla:seamonkey:2.6:beta2:::::: cpe:2.3:a:mozilla:seamonkey:2.5:::::::* cpe:2.3:a:mozilla:seamonkey:2.5:beta4:::::: cpe:2.3:a:mozilla:seamonkey:2.5:beta2:::::: cpe:2.3:a:mozilla:seamonkey:2.5:beta3:::::: cpe:2.3:a:mozilla:seamonkey:2.5:beta1:::::: cpe:2.3:a:mozilla:seamonkey:2.4.1:::::::* cpe:2.3:a:mozilla:seamonkey:2.4:::::::* cpe:2.3:a:mozilla:seamonkey:2.4:beta3:::::: cpe:2.3:a:mozilla:seamonkey:2.4:beta2:::::: cpe:2.3:a:mozilla:seamonkey:2.4:beta1:::::: cpe:2.3:a:mozilla:seamonkey:2.3.3:::::::* cpe:2.3:a:mozilla:seamonkey:2.3.2:::::::* cpe:2.3:a:mozilla:seamonkey:2.3.1:::::::* cpe:2.3:a:mozilla:seamonkey:2.3:::::::* cpe:2.3:a:mozilla:seamonkey:2.3:beta3:::::: cpe:2.3:a:mozilla:seamonkey:2.3:beta2:::::: cpe:2.3:a:mozilla:seamonkey:2.3:beta1:::::: cpe:2.3:a:mozilla:seamonkey:2.2:::::::* cpe:2.3:a:mozilla:seamonkey:2.2:beta1:::::: cpe:2.3:a:mozilla:seamonkey:2.2:beta2:::::: cpe:2.3:a:mozilla:seamonkey:2.2:beta3:::::: cpe:2.3:a:mozilla:seamonkey:2.13.2:::::::* cpe:2.3:a:mozilla:seamonkey:2.13.1:::::::* cpe:2.3:a:mozilla:seamonkey:2.13:beta1:::::: cpe:2.3:a:mozilla:seamonkey:2.13:beta4:::::: cpe:2.3:a:mozilla:seamonkey:2.13:beta5:::::: cpe:2.3:a:mozilla:seamonkey:2.13:beta2:::::: cpe:2.3:a:mozilla:seamonkey:2.13:beta6:::::: cpe:2.3:a:mozilla:seamonkey:2.13:beta3:::::: cpe:2.3:a:mozilla:seamonkey:2.13:::::::* cpe:2.3:a:mozilla:seamonkey:2.12.1:::::::* cpe:2.3:a:mozilla:seamonkey:2.12:beta2:::::: cpe:2.3:a:mozilla:seamonkey:2.12:beta6:::::: cpe:2.3:a:mozilla:seamonkey:2.12:beta5:::::: cpe:2.3:a:mozilla:seamonkey:2.12:beta1:::::: cpe:2.3:a:mozilla:seamonkey:2.12:beta4:::::: cpe:2.3:a:mozilla:seamonkey:2.12:beta3:::::: cpe:2.3:a:mozilla:seamonkey:2.12:::::::* cpe:2.3:a:mozilla:seamonkey:2.11:::::::* cpe:2.3:a:mozilla:seamonkey:2.11:beta3:::::: cpe:2.3:a:mozilla:seamonkey:2.11:beta4:::::: cpe:2.3:a:mozilla:seamonkey:2.11:beta2:::::: cpe:2.3:a:mozilla:seamonkey:2.11:beta1:::::: cpe:2.3:a:mozilla:seamonkey:2.11:beta6:::::: cpe:2.3:a:mozilla:seamonkey:2.11:beta5:::::: cpe:2.3:a:mozilla:seamonkey:2.10.1:::::::* cpe:2.3:a:mozilla:seamonkey:2.10:::::::* cpe:2.3:a:mozilla:seamonkey:2.10:beta2:::::: cpe:2.3:a:mozilla:seamonkey:2.10:beta3:::::: cpe:2.3:a:mozilla:seamonkey:2.10:beta1:::::: cpe:2.3:a:mozilla:seamonkey:2.1:alpha1:::::: cpe:2.3:a:mozilla:seamonkey:2.1:alpha3:::::: cpe:2.3:a:mozilla:seamonkey:2.1:alpha2:::::: cpe:2.3:a:mozilla:seamonkey:2.1:beta3:::::: cpe:2.3:a:mozilla:seamonkey:2.1:rc1:::::: cpe:2.3:a:mozilla:seamonkey:2.1:rc2:::::: cpe:2.3:a:mozilla:seamonkey:2.1:beta1:::::: cpe:2.3:a:mozilla:seamonkey:2.1:::::::* cpe:2.3:a:mozilla:seamonkey:2.1:beta2:::::: cpe:2.3:a:mozilla:seamonkey:2.0a1pre:::::::* cpe:2.3:a:mozilla:seamonkey:2.0a1::pre::::: cpe:2.3:a:mozilla:seamonkey:2.0.9:::::::* cpe:2.3:a:mozilla:seamonkey:2.0.8:::::::* cpe:2.3:a:mozilla:seamonkey:2.0.7:::::::* cpe:2.3:a:mozilla:seamonkey:2.0.6:::::::* cpe:2.3:a:mozilla:seamonkey:2.0.5:::::::* cpe:2.3:a:mozilla:seamonkey:2.0.4:::::::* cpe:2.3:a:mozilla:seamonkey:2.0.3:::::::* cpe:2.3:a:mozilla:seamonkey:2.0.2:::::::* cpe:2.3:a:mozilla:seamonkey:2.0.14:::::::* cpe:2.3:a:mozilla:seamonkey:2.0.13:::::::* cpe:2.3:a:mozilla:seamonkey:2.0.12:::::::* cpe:2.3:a:mozilla:seamonkey:2.0.11:::::::* cpe:2.3:a:mozilla:seamonkey:2.0.10:::::::* cpe:2.3:a:mozilla:seamonkey:2.0.1:::::::* cpe:2.3:a:mozilla:seamonkey:2.0:alpha_1:::::: cpe:2.3:a:mozilla:seamonkey:2.0:beta_1:::::: cpe:2.3:a:mozilla:seamonkey:2.0:alpha_2:::::: cpe:2.3:a:mozilla:seamonkey:2.0:beta_2:::::: cpe:2.3:a:mozilla:seamonkey:2.0:alpha_3:::::: cpe:2.3:a:mozilla:seamonkey:2.0:rc2:::::: cpe:2.3:a:mozilla:seamonkey:2.0:rc1:::::: cpe:2.3:a:mozilla:seamonkey:2.0:::::::* cpe:2.3:a:mozilla:seamonkey:2.:beta3:::::: cpe:2.3:a:mozilla:seamonkey:1.5.0.9:::::::* cpe:2.3:a:mozilla:seamonkey:1.5.0.8:::::::* cpe:2.3:a:mozilla:seamonkey:1.5.0.10:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.9:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.8:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.7:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.6:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.5:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.5:1.1.10:::::: cpe:2.3:a:mozilla:seamonkey:1.1.4:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.3:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.2:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.19:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.18:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.17:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.16:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.15:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.14:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.13:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.12:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.11:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.10:::::::* cpe:2.3:a:mozilla:seamonkey:1.1.1:::::::* cpe:2.3:a:mozilla:seamonkey:1.1:beta:::::: cpe:2.3:a:mozilla:seamonkey:1.1:alpha:::::: cpe:2.3:a:mozilla:seamonkey:1.1:::::::* cpe:2.3:a:mozilla:seamonkey:1.0.99:::::::* cpe:2.3:a:mozilla:seamonkey:1.0.9:::::::* cpe:2.3:a:mozilla:seamonkey:1.0.8:::::::* cpe:2.3:a:mozilla:seamonkey:1.0.7:::::::* cpe:2.3:a:mozilla:seamonkey:1.0.6:::::::* cpe:2.3:a:mozilla:seamonkey:1.0.5:::::::* cpe:2.3:a:mozilla:seamonkey:1.0.4:::::::* cpe:2.3:a:mozilla:seamonkey:1.0.3:::::::* cpe:2.3:a:mozilla:seamonkey:1.0.2:::::::* cpe:2.3:a:mozilla:seamonkey:1.0.1:::::::* cpe:2.3:a:mozilla:seamonkey:1.0:alpha:::::: cpe:2.3:a:mozilla:seamonkey:1.0:beta:::::: cpe:2.3:a:mozilla:seamonkey:1.0:::::::* cpe:2.3:a:mozilla:seamonkey:1.0::dev::::: cpe:2.3:a:mozilla:seamonkey:1.0::alpha::::: cpe:2.3:a:mozilla:seamonkey:1.0::beta::::: cpe:2.3:a:mozilla:seamonkey:::::::: cpe:2.3:a:mozilla:seamonkey:-:::::::*	155
Application	Mozilla Thunderbird cpe:2.3:a:mozilla:thunderbird:16.0.2:::::::* cpe:2.3:a:mozilla:thunderbird:16.0.1:::::::* cpe:2.3:a:mozilla:thunderbird:16.0:::::::* cpe:2.3:a:mozilla:thunderbird:16.0:beta1:::::: cpe:2.3:a:mozilla:thunderbird:16.0:beta2:::::: cpe:2.3:a:mozilla:thunderbird:16.0:beta3:::::: cpe:2.3:a:mozilla:thunderbird:16.0:beta4:::::: cpe:2.3:a:mozilla:thunderbird:15.0.1:::::::* cpe:2.3:a:mozilla:thunderbird:15.0:::::::* cpe:2.3:a:mozilla:thunderbird:15.0:beta1:::::: cpe:2.3:a:mozilla:thunderbird:15.0:beta2:::::: cpe:2.3:a:mozilla:thunderbird:15.0:beta3:::::: cpe:2.3:a:mozilla:thunderbird:15.0:beta4:::::: cpe:2.3:a:mozilla:thunderbird:15.0:beta5:::::: cpe:2.3:a:mozilla:thunderbird:14.0:::::::* cpe:2.3:a:mozilla:thunderbird:14.0:beta1:::::: cpe:2.3:a:mozilla:thunderbird:14.0:beta2:::::: cpe:2.3:a:mozilla:thunderbird:14.0:beta3:::::: cpe:2.3:a:mozilla:thunderbird:14.0:beta4:::::: cpe:2.3:a:mozilla:thunderbird:14.0:beta5:::::: cpe:2.3:a:mozilla:thunderbird:13.0.1:::::::* cpe:2.3:a:mozilla:thunderbird:13.0:::::::* cpe:2.3:a:mozilla:thunderbird:13.0:beta1:::::: cpe:2.3:a:mozilla:thunderbird:13.0:beta2:::::: cpe:2.3:a:mozilla:thunderbird:13.0:beta3:::::: cpe:2.3:a:mozilla:thunderbird:13.0:beta4:::::: cpe:2.3:a:mozilla:thunderbird:12.0.1:::::::* cpe:2.3:a:mozilla:thunderbird:12.0:::::::* cpe:2.3:a:mozilla:thunderbird:12.0:beta1:::::: cpe:2.3:a:mozilla:thunderbird:12.0:beta2:::::: cpe:2.3:a:mozilla:thunderbird:12.0:beta3:::::: cpe:2.3:a:mozilla:thunderbird:12.0:beta4:::::: cpe:2.3:a:mozilla:thunderbird:12.0:beta5:::::: cpe:2.3:a:mozilla:thunderbird:11.0.1:::::::* cpe:2.3:a:mozilla:thunderbird:11.0:::::::* cpe:2.3:a:mozilla:thunderbird:11.0:beta1:::::: cpe:2.3:a:mozilla:thunderbird:11.0:beta2:::::: cpe:2.3:a:mozilla:thunderbird:11.0:beta3:::::: cpe:2.3:a:mozilla:thunderbird:11.0:beta4:::::: cpe:2.3:a:mozilla:thunderbird:11.0:beta5:::::: cpe:2.3:a:mozilla:thunderbird:10.0.4:::::::* cpe:2.3:a:mozilla:thunderbird:10.0.3:::::::* cpe:2.3:a:mozilla:thunderbird:10.0.2:::::::* cpe:2.3:a:mozilla:thunderbird:10.0.1:::::::* cpe:2.3:a:mozilla:thunderbird:10.0:::::::* cpe:2.3:a:mozilla:thunderbird:10.0:beta1:::::: cpe:2.3:a:mozilla:thunderbird:10.0:beta2:::::: cpe:2.3:a:mozilla:thunderbird:10.0:beta3:::::: cpe:2.3:a:mozilla:thunderbird:10.0:beta4:::::: cpe:2.3:a:mozilla:thunderbird:10.0:beta5:::::: cpe:2.3:a:mozilla:thunderbird:9.0.1:::::::* cpe:2.3:a:mozilla:thunderbird:9.0:::::::* cpe:2.3:a:mozilla:thunderbird:9.0:beta1:::::: cpe:2.3:a:mozilla:thunderbird:9.0:beta2:::::: cpe:2.3:a:mozilla:thunderbird:9.0:beta3:::::: cpe:2.3:a:mozilla:thunderbird:9.0:beta4:::::: cpe:2.3:a:mozilla:thunderbird:9.0:beta5:::::: cpe:2.3:a:mozilla:thunderbird:8.0:::::::* cpe:2.3:a:mozilla:thunderbird:8.0:beta1:::::: cpe:2.3:a:mozilla:thunderbird:8.0:beta2:::::: cpe:2.3:a:mozilla:thunderbird:8.0:beta3:::::: cpe:2.3:a:mozilla:thunderbird:8.0:beta4:::::: cpe:2.3:a:mozilla:thunderbird:8.0:beta5:::::: cpe:2.3:a:mozilla:thunderbird:7.0.1:::::::* cpe:2.3:a:mozilla:thunderbird:7.0:::::::* cpe:2.3:a:mozilla:thunderbird:7.0:beta1:::::: cpe:2.3:a:mozilla:thunderbird:7.0:beta2:::::: cpe:2.3:a:mozilla:thunderbird:7.0:beta3:::::: cpe:2.3:a:mozilla:thunderbird:6.0.2:::::::* cpe:2.3:a:mozilla:thunderbird:6.0.1:::::::* cpe:2.3:a:mozilla:thunderbird:6.0:::::::* cpe:2.3:a:mozilla:thunderbird:6.0:beta1:::::: cpe:2.3:a:mozilla:thunderbird:6.0:beta2:::::: cpe:2.3:a:mozilla:thunderbird:6.0:beta3:::::: cpe:2.3:a:mozilla:thunderbird:5.0:::::::* cpe:2.3:a:mozilla:thunderbird:5.0:beta1:::::: cpe:2.3:a:mozilla:thunderbird:5.0:beta2:::::: cpe:2.3:a:mozilla:thunderbird:3.3:alpha1:::::: cpe:2.3:a:mozilla:thunderbird:3.3:alpha2:::::: cpe:2.3:a:mozilla:thunderbird:3.3:alpha3:::::: cpe:2.3:a:mozilla:thunderbird:3.1.9:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.8:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.7:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.6:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.5:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.4:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.3:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.20:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.2:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.19:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.18:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.17:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.16:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.15:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.14:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.13:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.12:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.11:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.10:::::::* cpe:2.3:a:mozilla:thunderbird:3.1.1:::::::* cpe:2.3:a:mozilla:thunderbird:3.1:alpha1:::::: cpe:2.3:a:mozilla:thunderbird:3.1:beta1:::::: cpe:2.3:a:mozilla:thunderbird:3.1:beta2:::::: cpe:2.3:a:mozilla:thunderbird:3.1:rc1:::::: cpe:2.3:a:mozilla:thunderbird:3.1:rc2:::::: cpe:2.3:a:mozilla:thunderbird:3.1:-:::::: cpe:2.3:a:mozilla:thunderbird:3.0.9:::::::* cpe:2.3:a:mozilla:thunderbird:3.0.8:::::::* cpe:2.3:a:mozilla:thunderbird:3.0.7:::::::* cpe:2.3:a:mozilla:thunderbird:3.0.6:::::::* cpe:2.3:a:mozilla:thunderbird:3.0.5:::::::* cpe:2.3:a:mozilla:thunderbird:3.0.4:::::::* cpe:2.3:a:mozilla:thunderbird:3.0.3:::::::* cpe:2.3:a:mozilla:thunderbird:3.0.2:::::::* cpe:2.3:a:mozilla:thunderbird:3.0.11:::::::* cpe:2.3:a:mozilla:thunderbird:3.0.10:::::::* cpe:2.3:a:mozilla:thunderbird:3.0.1:::::::* cpe:2.3:a:mozilla:thunderbird:3.0:alpha1:::::: cpe:2.3:a:mozilla:thunderbird:3.0:alpha2:::::: cpe:2.3:a:mozilla:thunderbird:3.0:alpha3:::::: cpe:2.3:a:mozilla:thunderbird:3.0:beta1:::::: cpe:2.3:a:mozilla:thunderbird:3.0:beta2:::::: cpe:2.3:a:mozilla:thunderbird:3.0:beta3:::::: cpe:2.3:a:mozilla:thunderbird:3.0:beta4:::::: cpe:2.3:a:mozilla:thunderbird:3.0:rc1:::::: cpe:2.3:a:mozilla:thunderbird:3.0:rc2:::::: cpe:2.3:a:mozilla:thunderbird:3.0:-:::::: cpe:2.3:a:mozilla:thunderbird:2.0.0.9:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.8:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.7:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.6:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.5:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.4:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.3:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.24:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.23:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.22:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.21:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.20:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.2:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.19:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.18:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.17:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.16:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.15:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.14:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.13:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.12:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.11:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.1:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.0:::::::* cpe:2.3:a:mozilla:thunderbird:2.0.0.0:rc1:::::: cpe:2.3:a:mozilla:thunderbird:2.0_8:::::::* cpe:2.3:a:mozilla:thunderbird:2.0_.9:::::::* cpe:2.3:a:mozilla:thunderbird:2.0_.6:::::::* cpe:2.3:a:mozilla:thunderbird:2.0_.5:::::::* cpe:2.3:a:mozilla:thunderbird:2.0_.4:::::::* cpe:2.3:a:mozilla:thunderbird:2.0_.14:::::::* cpe:2.3:a:mozilla:thunderbird:2.0_.13:::::::* cpe:2.3:a:mozilla:thunderbird:2.0_.12:::::::* cpe:2.3:a:mozilla:thunderbird:2.0:alpha1:::::: cpe:2.3:a:mozilla:thunderbird:2.0:beta1:::::: cpe:2.3:a:mozilla:thunderbird:2.0:beta2:::::: cpe:2.3:a:mozilla:thunderbird:2.0:-:::::: cpe:2.3:a:mozilla:thunderbird:1.7.3:::::::* cpe:2.3:a:mozilla:thunderbird:1.7.1:::::::* cpe:2.3:a:mozilla:thunderbird:1.5.2:::::::* cpe:2.3:a:mozilla:thunderbird:1.5.1:::::::* cpe:2.3:a:mozilla:thunderbird:1.5.0.9:::::::* cpe:2.3:a:mozilla:thunderbird:1.5.0.8:::::::* cpe:2.3:a:mozilla:thunderbird:1.5.0.7:::::::* cpe:2.3:a:mozilla:thunderbird:1.5.0.6:::::::* cpe:2.3:a:mozilla:thunderbird:1.5.0.5:::::::* cpe:2.3:a:mozilla:thunderbird:1.5.0.4:::::::* cpe:2.3:a:mozilla:thunderbird:1.5.0.3:::::::* cpe:2.3:a:mozilla:thunderbird:1.5.0.2:::::::* cpe:2.3:a:mozilla:thunderbird:1.5.0.14:::::::* cpe:2.3:a:mozilla:thunderbird:1.5.0.13:::::::* cpe:2.3:a:mozilla:thunderbird:1.5.0.12:::::::* cpe:2.3:a:mozilla:thunderbird:1.5.0.11:::::::* cpe:2.3:a:mozilla:thunderbird:1.5.0.10:::::::* cpe:2.3:a:mozilla:thunderbird:1.5.0.1:::::::* cpe:2.3:a:mozilla:thunderbird:1.5:beta2:::::: cpe:2.3:a:mozilla:thunderbird:1.5:beta1:::::: cpe:2.3:a:mozilla:thunderbird:1.5:rc1:::::: cpe:2.3:a:mozilla:thunderbird:1.5:rc2:::::: cpe:2.3:a:mozilla:thunderbird:1.5:-:::::: cpe:2.3:a:mozilla:thunderbird:1.1:alpha1:::::: cpe:2.3:a:mozilla:thunderbird:1.1:alpha2:::::: cpe:2.3:a:mozilla:thunderbird:1.0.8:::::::* cpe:2.3:a:mozilla:thunderbird:1.0.7:::::::* cpe:2.3:a:mozilla:thunderbird:1.0.6:::::::* cpe:2.3:a:mozilla:thunderbird:1.0.5:::::::* cpe:2.3:a:mozilla:thunderbird:1.0.5:beta:::::: cpe:2.3:a:mozilla:thunderbird:1.0.4:::::::* cpe:2.3:a:mozilla:thunderbird:1.0.3:::::::* cpe:2.3:a:mozilla:thunderbird:1.0.2:::::::* cpe:2.3:a:mozilla:thunderbird:1.0.1:::::::* cpe:2.3:a:mozilla:thunderbird:1.0:rc:::::: cpe:2.3:a:mozilla:thunderbird:1.0:-:::::: cpe:2.3:a:mozilla:thunderbird:0.9:::::::* cpe:2.3:a:mozilla:thunderbird:0.8:::::::* cpe:2.3:a:mozilla:thunderbird:0.7.3:::::::* cpe:2.3:a:mozilla:thunderbird:0.7.2:::::::* cpe:2.3:a:mozilla:thunderbird:0.7.1:::::::* cpe:2.3:a:mozilla:thunderbird:0.7:rc:::::: cpe:2.3:a:mozilla:thunderbird:0.7:-:::::: cpe:2.3:a:mozilla:thunderbird:0.6:::::::* cpe:2.3:a:mozilla:thunderbird:0.5:::::::* cpe:2.3:a:mozilla:thunderbird:0.4:::::::* cpe:2.3:a:mozilla:thunderbird:0.3:::::::* cpe:2.3:a:mozilla:thunderbird:0.2:::::::* cpe:2.3:a:mozilla:thunderbird:0.1:::::::* cpe:2.3:a:mozilla:thunderbird:::::::: cpe:2.3:a:mozilla:thunderbird:::::::x86:* cpe:2.3:a:mozilla:thunderbird:-:::::::*	216
Application	Mozilla Thunderbird Esr cpe:2.3:a:mozilla:thunderbird_esr:10.0.9:::::::* cpe:2.3:a:mozilla:thunderbird_esr:10.0.8:::::::* cpe:2.3:a:mozilla:thunderbird_esr:10.0.7:::::::* cpe:2.3:a:mozilla:thunderbird_esr:10.0.6:::::::* cpe:2.3:a:mozilla:thunderbird_esr:10.0.5:::::::* cpe:2.3:a:mozilla:thunderbird_esr:10.0.4:::::::* cpe:2.3:a:mozilla:thunderbird_esr:10.0.3:::::::* cpe:2.3:a:mozilla:thunderbird_esr:10.0.2:::::::* cpe:2.3:a:mozilla:thunderbird_esr:10.0.10:::::::* cpe:2.3:a:mozilla:thunderbird_esr:10.0.1:::::::* cpe:2.3:a:mozilla:thunderbird_esr:10.0:::::::* cpe:2.3:a:mozilla:thunderbird_esr::::::::	12
Os	Canonical Ubuntu Linux cpe:2.3:o:canonical:ubuntu_linux:12.10:::::::* cpe:2.3:o:canonical:ubuntu_linux:12.04::::esm::: cpe:2.3:o:canonical:ubuntu_linux:11.10:::::::* cpe:2.3:o:canonical:ubuntu_linux:10.04::::-::: cpe:2.3:o:canonical:ubuntu_linux:10.04:::::::*	5
Os	Debian Debian Linux cpe:2.3:o:debian:debian_linux:7.0:::::::* cpe:2.3:o:debian:debian_linux:6.0:::::::*	2
Os	Opensuse cpe:2.3:o:opensuse:opensuse:12.2:::::::* cpe:2.3:o:opensuse:opensuse:12.1:::::::* cpe:2.3:o:opensuse:opensuse:11.4:::::::*	3
Os	Redhat Enterprise Linux Desktop cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::* cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:::::::*	2
Os	Redhat Enterprise Linux Eus cpe:2.3:o:redhat:enterprise_linux_eus:6.3:::::::*	1
Os	Redhat Enterprise Linux Server cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::* cpe:2.3:o:redhat:enterprise_linux_server:5.0:::::::*	2
Os	Redhat Enterprise Linux Workstation cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::* cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:::::::*	2
Os	Suse Linux Enterprise Desktop cpe:2.3:o:suse:linux_enterprise_desktop:11:sp2:::::: cpe:2.3:o:suse:linux_enterprise_desktop:10:sp4:::::: cpe:2.3:o:suse:linux_enterprise_desktop:10:sp4:::-:::*	3
Os	Suse Linux Enterprise Server cpe:2.3:o:suse:linux_enterprise_server:11:sp2::::-::* cpe:2.3:o:suse:linux_enterprise_server:11:sp2::::vmware::* cpe:2.3:o:suse:linux_enterprise_server:11:sp2:::::: cpe:2.3:o:suse:linux_enterprise_server:10:sp4:::::: cpe:2.3:o:suse:linux_enterprise_server:10:sp4:::-:::*	5
Os	Suse Linux Enterprise Software Development Kit cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp2:::::: cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp3:::::: cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp4::::::	3

OpenVAS Exploits

Date	Description
2013-09-18	Name : Debian Security Advisory DSA 2588-1 (icedove - several vulnerabilities) File : nvt/deb_2588_1.nasl
2013-09-18	Name : Debian Security Advisory DSA 2584-1 (iceape - several vulnerabilities) File : nvt/deb_2584_1.nasl
2013-09-18	Name : Debian Security Advisory DSA 2583-1 (iceweasel - several vulnerabilities) File : nvt/deb_2583_1.nasl
2013-04-01	Name : Mozilla Firefox ESR Code Execution Vulnerabilities - November12 (Windows) File : nvt/gb_mozilla_firefox_esr_code_exec_vuln_nov12_win.nasl
2013-04-01	Name : Mozilla Firefox ESR Code Execution Vulnerabilities - November12 (Mac OS X) File : nvt/gb_mozilla_firefox_esr_code_exec_vuln_nov12_macosx.nasl
2012-12-06	Name : Fedora Update for seamonkey FEDORA-2012-18952 File : nvt/gb_fedora_2012_18952_seamonkey_fc17.nasl
2012-12-06	Name : Fedora Update for seamonkey FEDORA-2012-18931 File : nvt/gb_fedora_2012_18931_seamonkey_fc16.nasl
2012-12-04	Name : Ubuntu Update for firefox USN-1638-3 File : nvt/gb_ubuntu_USN_1638_3.nasl
2012-11-26	Name : Mozilla Thunderbird Multiple Vulnerabilities-01 November12 (Windows) File : nvt/gb_mozilla_thunderbird_mult_vuln01_nov12_win.nasl
2012-11-26	Name : Mozilla Firefox Multiple Vulnerabilities-01 November12 (Mac OS X) File : nvt/gb_mozilla_prdts_mult_vuln01_nov12_macosx.nasl
2012-11-26	Name : Mozilla Thunderbird ESR Multiple Vulnerabilities-01 November12 (Windows) File : nvt/gb_mozilla_thunderbird_esr_mult_vuln01_nov12_win.nasl
2012-11-26	Name : Mozilla SeaMonkey Multiple Vulnerabilities-02 November12 (Windows) File : nvt/gb_mozilla_seamonkey_mult_vuln02_nov12_win.nasl
2012-11-26	Name : Mozilla Thunderbird Multiple Vulnerabilities-02 November12 (Windows) File : nvt/gb_mozilla_thunderbird_mult_vuln02_nov12_win.nasl
2012-11-26	Name : Mozilla SeaMonkey Multiple Vulnerabilities-01 November12 (Windows) File : nvt/gb_mozilla_seamonkey_mult_vuln01_nov12_win.nasl
2012-11-26	Name : Mozilla Firefox Multiple Vulnerabilities-02 November12 (Windows) File : nvt/gb_mozilla_prdts_mult_vuln02_nov12_win.nasl
2012-11-26	Name : Mozilla Firefox Multiple Vulnerabilities-02 November12 (Mac OS X) File : nvt/gb_mozilla_prdts_mult_vuln02_nov12_macosx.nasl
2012-11-26	Name : Mozilla Firefox Multiple Vulnerabilities-01 November12 (Windows) File : nvt/gb_mozilla_prdts_mult_vuln01_nov12_win.nasl
2012-11-26	Name : FreeBSD Ports: firefox File : nvt/freebsd_firefox72.nasl
2012-11-26	Name : Mozilla Firefox Multiple Vulnerabilities - November12 (Windows) File : nvt/gb_mozilla_firefox_mult_vuln_nov12_win.nasl
2012-11-26	Name : Mozilla Firefox Multiple Vulnerabilities - November12 (Mac OS X) File : nvt/gb_mozilla_firefox_mult_vuln_nov12_macosx.nasl
2012-11-26	Name : Mozilla Firefox ESR Multiple Vulnerabilities-01 November12 (Windows) File : nvt/gb_mozilla_firefox_esr_mult_vuln01_nov12_win.nasl
2012-11-26	Name : Mozilla Firefox Code Execution Vulnerabilities - November12 (Windows) File : nvt/gb_mozilla_firefox_code_exec_vuln_nov12_win.nasl
2012-11-26	Name : Mozilla Firefox Code Execution Vulnerabilities - November12 (Mac OS X) File : nvt/gb_mozilla_firefox_code_exec_vuln_nov12_macosx.nasl
2012-11-23	Name : RedHat Update for thunderbird RHSA-2012:1483-01 File : nvt/gb_RHSA-2012_1483-01_thunderbird.nasl
2012-11-23	Name : RedHat Update for firefox RHSA-2012:1482-01 File : nvt/gb_RHSA-2012_1482-01_firefox.nasl
2012-11-23	Name : Ubuntu Update for thunderbird USN-1636-1 File : nvt/gb_ubuntu_USN_1636_1.nasl
2012-11-23	Name : Ubuntu Update for firefox USN-1638-1 File : nvt/gb_ubuntu_USN_1638_1.nasl
2012-11-23	Name : Ubuntu Update for ubufox USN-1638-2 File : nvt/gb_ubuntu_USN_1638_2.nasl
2012-11-23	Name : CentOS Update for thunderbird CESA-2012:1483 centos6 File : nvt/gb_CESA-2012_1483_thunderbird_centos6.nasl
2012-11-23	Name : CentOS Update for thunderbird CESA-2012:1483 centos5 File : nvt/gb_CESA-2012_1483_thunderbird_centos5.nasl
2012-11-23	Name : CentOS Update for firefox CESA-2012:1482 centos6 File : nvt/gb_CESA-2012_1482_firefox_centos6.nasl
2012-11-23	Name : CentOS Update for firefox CESA-2012:1482 centos5 File : nvt/gb_CESA-2012_1482_firefox_centos5.nasl

Nessus® Vulnerability Scanner

Date	Description
2015-05-20	Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2013-0306-1.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2012-817.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2012-818.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2012-819.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2012-820.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2013-17.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing a security update. File : oraclelinux_ELSA-2012-1483.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2012-1482.nasl - Type : ACT_GATHER_INFO
2013-02-06	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1681-4.nasl - Type : ACT_GATHER_INFO
2013-01-25	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_firefox-201301-130110.nasl - Type : ACT_GATHER_INFO
2013-01-25	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_firefox-20121121-121123.nasl - Type : ACT_GATHER_INFO
2013-01-23	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1681-3.nasl - Type : ACT_GATHER_INFO
2013-01-20	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_firefox-201301-8426.nasl - Type : ACT_GATHER_INFO
2013-01-15	Name : The remote Mac OS X host contains a web browser that is affected by multiple ... File : macosx_firefox_18_0.nasl - Type : ACT_GATHER_INFO
2013-01-15	Name : The remote Windows host contains a web browser that is affected by multiple v... File : seamonkey_215.nasl - Type : ACT_GATHER_INFO
2013-01-15	Name : The remote Windows host contains a web browser that is affected by multiple v... File : mozilla_firefox_180.nasl - Type : ACT_GATHER_INFO
2013-01-10	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_a4ed66325aa911e28fcbc8600054b392.nasl - Type : ACT_GATHER_INFO
2013-01-09	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1681-1.nasl - Type : ACT_GATHER_INFO
2013-01-09	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1681-2.nasl - Type : ACT_GATHER_INFO
2013-01-08	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201301-01.nasl - Type : ACT_GATHER_INFO
2012-12-17	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2588.nasl - Type : ACT_GATHER_INFO
2012-12-09	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2584.nasl - Type : ACT_GATHER_INFO
2012-12-09	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2583.nasl - Type : ACT_GATHER_INFO
2012-12-04	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1638-3.nasl - Type : ACT_GATHER_INFO
2012-12-04	Name : The remote Fedora host is missing a security update. File : fedora_2012-18894.nasl - Type : ACT_GATHER_INFO
2012-12-04	Name : The remote Fedora host is missing a security update. File : fedora_2012-18931.nasl - Type : ACT_GATHER_INFO
2012-12-04	Name : The remote Fedora host is missing a security update. File : fedora_2012-18952.nasl - Type : ACT_GATHER_INFO
2012-11-29	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_firefox-20121121-8381.nasl - Type : ACT_GATHER_INFO
2012-11-23	Name : The remote CentOS host is missing a security update. File : centos_RHSA-2012-1483.nasl - Type : ACT_GATHER_INFO
2012-11-23	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1638-2.nasl - Type : ACT_GATHER_INFO
2012-11-23	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1638-1.nasl - Type : ACT_GATHER_INFO
2012-11-23	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1636-1.nasl - Type : ACT_GATHER_INFO
2012-11-23	Name : The remote Scientific Linux host is missing a security update. File : sl_20121120_thunderbird_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-11-23	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20121120_firefox_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-11-23	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2012-1482.nasl - Type : ACT_GATHER_INFO
2012-11-21	Name : The remote Windows host contains a web browser that is affected by multiple v... File : seamonkey_214.nasl - Type : ACT_GATHER_INFO
2012-11-21	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-1483.nasl - Type : ACT_GATHER_INFO
2012-11-21	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-1482.nasl - Type : ACT_GATHER_INFO
2012-11-21	Name : The remote Windows host contains a mail client that is potentially affected b... File : mozilla_thunderbird_170.nasl - Type : ACT_GATHER_INFO
2012-11-21	Name : The remote Windows host contains a mail client that is potentially affected b... File : mozilla_thunderbird_10011.nasl - Type : ACT_GATHER_INFO
2012-11-21	Name : The remote Windows host contains a web browser that is affected by multiple v... File : mozilla_firefox_170.nasl - Type : ACT_GATHER_INFO
2012-11-21	Name : The remote Windows host contains a web browser that is affected by multiple v... File : mozilla_firefox_10011.nasl - Type : ACT_GATHER_INFO
2012-11-21	Name : The remote Mac OS X host contains a mail client that is potentially affected ... File : macosx_thunderbird_17_0.nasl - Type : ACT_GATHER_INFO
2012-11-21	Name : The remote Mac OS X host contains a mail client that is potentially affected ... File : macosx_thunderbird_10_0_11.nasl - Type : ACT_GATHER_INFO
2012-11-21	Name : The remote Mac OS X host contains a web browser that is affected by multiple ... File : macosx_firefox_17_0.nasl - Type : ACT_GATHER_INFO
2012-11-21	Name : The remote Mac OS X host contains a web browser that is affected by multiple ... File : macosx_firefox_10_0_11.nasl - Type : ACT_GATHER_INFO
2012-11-21	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_d23119df335d11e2b64cc8600054b392.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 12:01:05	Multiple Updates
2012-12-06 13:21:41	Multiple Updates
2012-11-22 00:21:23	Multiple Updates
2012-11-22 00:19:56	First insertion

Global Informations

Type	Count
CWE ID(s)	27
Oval ID(s)	43
CPE ID(s)	738
Openvas Exploit(s)	32
Nessus® Exploit(s)	47

	Related
10	USN-1638-3
10	USN-1638-2
10	CVE-2012-5835
10	CVE-2012-4218
10	CVE-2012-4212
9.3	CVE-2012-5843
9.3	CVE-2012-5842
9.3	CVE-2012-5840
9.3	CVE-2012-5839
9.3	CVE-2012-5838
9.3	CVE-2012-5833
9.3	CVE-2012-5829
9.3	CVE-2012-4217
9.3	CVE-2012-4216
9.3	CVE-2012-4215
9.3	CVE-2012-4214
9.3	CVE-2012-4213
9.3	CVE-2012-4210
9.3	CVE-2012-4204
9.3	CVE-2012-4202
8.8	CVE-2012-5830
7.5	CVE-2012-5836
6.8	CVE-2012-5837
6.8	CVE-2012-4205
6.8	CVE-2012-4203
4.3	CVE-2012-5841
4.3	CVE-2012-4209
4.3	CVE-2012-4208
4.3	CVE-2012-4207
4.3	CVE-2012-4201
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 30 more Alert(s)