oval:org.mitre.oval:def:11961
Definition Id: oval:org.mitre.oval:def:11961 | |||
Oval ID: | oval:org.mitre.oval:def:11961 | ||
Title: | Mozilla Firefox Plugin Parameter Reference Remote Code Execution Vulnerability | ||
Description: | layout/generic/nsObjectFrame.cpp in Mozilla Firefox 3.6.7 does not properly free memory in the parameter array of a plugin instance, which allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted HTML document, related to the DATA and SRC attributes of an OBJECT element. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-1214. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2755 | Version: | 11 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 | Product(s): | Mozilla Firefox |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:22259 | |||
Oval ID: | oval:org.mitre.oval:def:22259 | ||
Title: | Mozilla Firefox Mainline release is installed | ||
Description: | The browser installed on the system is Mozilla Firefox Mainline release | ||
Family: | windows | Class: | inventory |
Reference(s): | cpe:/a:mozilla:firefox | Version: | 9 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2012 | Product(s): | Mozilla Firefox |
Definition Synopsis: | |||
Referenced By: | |||
oval:org.mitre.oval:def:11961 |