oval:org.mitre.oval:def:6455

Definition Id: oval:org.mitre.oval:def:6455

Oval ID:	oval:org.mitre.oval:def:6455
Title:	Mozilla Firefox before 3.0.15, and 3.5.x before 3.5.4, allows remote attackers to read form history by forging mouse and keyboard events
Description:	Mozilla Firefox before 3.0.15, and 3.5.x before 3.5.4, allows remote attackers to read form history by forging mouse and keyboard events that leverage the auto-fill feature to populate form fields, in an attacker-readable form, with history entries.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2009-3370	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7	Product(s):	Mozilla Firefox
Definition Synopsis:
Mozilla Firefox Mainline release is installed AND Check for vulnerable version Mozilla Firefox Mainline version is 3.0.x to 3.0.14 AND Mozilla Firefox Mainline version is 3.5.x to 3.5.3

Definition Id: oval:org.mitre.oval:def:22259

Oval ID:	oval:org.mitre.oval:def:22259
Title:	Mozilla Firefox Mainline release is installed
Description:	The browser installed on the system is Mozilla Firefox Mainline release
Family:	windows	Class:	inventory
Reference(s):	cpe:/a:mozilla:firefox	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Mozilla Firefox
Definition Synopsis:
Check if Firefox Mainline is installed on the system AND Check if HKLM\Software\Mozilla\Mozilla Firefox.*$!Install Directory exists AND Check if channel-prefs.js (Firefox Mainline file) exists
Referenced By:
oval:org.mitre.oval:def:6455