oval:org.mitre.oval:def:13392

Definition Id: oval:org.mitre.oval:def:13392
 
Oval ID: oval:org.mitre.oval:def:13392
Title: USN-997-1 -- firefox, firefox-3.0, firefox-3.5, xulrunner-1.9.1, xulrunner-1.9.2 vulnerabilities
Description: Paul Nickerson, Jesse Ruderman, Olli Pettay, Igor Bukanov, Josh Soref, Gary Kwong, Martijn Wargers, Siddharth Agarwal and Michal Zalewski discovered various flaws in the browser engine. An attacker could exploit this to crash the browser or possibly run arbitrary code as the user invoking the program. Alexander Miller, Sergey Glazunov, and others discovered several flaws in the JavaScript engine. An attacker could exploit this to crash the browser or possibly run arbitrary code as the user invoking the program. Robert Swiecki discovered that Firefox did not properly validate Gopher URLs. If a user were tricked into opening a crafted file via Gopher, an attacker could possibly run arbitrary JavaScript. Eduardo Vela Nava discovered that Firefox could be made to violate the same-origin policy by using modal calls with JavaScript. An attacker could exploit this to steal information from another site. Dmitri GribenkoDmitri Gribenko discovered that Firefox did not properly setup the LD_LIBRARY_PATH environment variable. A local attacker could exploit this to execute arbitrary code as the user invoking the program
Family: unix Class: patch
Reference(s): USN-997-1
CVE-2010-3175
CVE-2010-3176
CVE-2010-3179
CVE-2010-3180
CVE-2010-3183
CVE-2010-3177
CVE-2010-3178
CVE-2010-3182
 Version: 5
Platform(s): Ubuntu 8.04
Ubuntu 10.10
Ubuntu 10.04
Ubuntu 9.04
Ubuntu 9.10
 Product(s): firefox
firefox-3.0
firefox-3.5
xulrunner-1.9.1
xulrunner-1.9.2
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:13089
 
Oval ID: oval:org.mitre.oval:def:13089
Title: Ubuntu 10.04 is installed
Description: Ubuntu 10.04 is installed
Family: unix Class: inventory
Reference(s): cpe:/o:canonical:ubuntu_linux:10.04
 Version: 5
Platform(s): Ubuntu 10.04
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:13392
Definition Id: oval:org.mitre.oval:def:13134
 
Oval ID: oval:org.mitre.oval:def:13134
Title: Ubuntu 10.10 is installed
Description: Ubuntu 10.10 is installed
Family: unix Class: inventory
Reference(s): cpe:/o:ubuntu:ubuntu_linux:10.10
 Version: 3
Platform(s): Ubuntu 10.10
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:13392
Definition Id: oval:org.mitre.oval:def:13079
 
Oval ID: oval:org.mitre.oval:def:13079
Title: Ubuntu 9.10 is installed
Description: Ubuntu 9.10 is installed
Family: unix Class: inventory
Reference(s): cpe:/o:canonical:ubuntu_linux:9.10
 Version: 5
Platform(s): Ubuntu 9.10
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:13392
Definition Id: oval:org.mitre.oval:def:13250
 
Oval ID: oval:org.mitre.oval:def:13250
Title: Ubuntu 8.04 is installed
Description: Ubuntu 8.04 is installed
Family: unix Class: inventory
Reference(s): cpe:/o:ubuntu:ubuntu_linux:8.04
 Version: 3
Platform(s): Ubuntu 8.04
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:13392
Definition Id: oval:org.mitre.oval:def:12669
 
Oval ID: oval:org.mitre.oval:def:12669
Title: Ubuntu 9.04 is installed
Description: Ubuntu 9.04 is installed
Family: unix Class: inventory
Reference(s): cpe:/o:canonical:ubuntu_linux:9.04
 Version: 5
Platform(s): Ubuntu 9.04
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:13392