oval:org.mitre.oval:def:100038

Definition Id: oval:org.mitre.oval:def:100038

Oval ID:	oval:org.mitre.oval:def:100038
Title:	Mozilla XSLT Stylesheet Information Disclosure Potential
Description:	Firefox before 1.0.1 and Mozilla before 1.7.6 does not restrict xsl:include and xsl:import tags in XSLT stylesheets to the current domain, which allows remote attackers to determine the existence of files on the local system.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2005-0588	Version:	5
Platform(s):	Microsoft Windows NT Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	mozilla Mozilla Firefox
Definition Synopsis:
Mozilla Firefox version 1.0 or earlier is installed Firefox version 1.0 or earlier is installed AND Mozilla Firefox version 1.0 or earlier is installed OR Mozilla Suite version 1.7.5 or earlier is installed Mozilla Suite version 1.7.5 or earlier is installed AND Mozilla Suite version 1.7.5 or earlier is installed