oval:org.mitre.oval:def:1226

Definition Id: oval:org.mitre.oval:def:1226

Oval ID:	oval:org.mitre.oval:def:1226
Title:	RHE4 Improper Handling of Synthetic Events in Mozilla
Description:	The browser user interface in Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 does not properly distinguish between user-generated events and untrusted synthetic events, which makes it easier for remote attackers to perform dangerous actions that normally could only be performed manually by the user.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2005-2260	Version:	5
Platform(s):	Red Hat Enterprise Linux 4	Product(s):	mozilla
Definition Synopsis:
Software section Red Hat Enterprise 4 is installed AND mozilla RPM is earlier than 37:1.7.10-1.4.1 AND Configuration section /usr/bin/mozilla is executable