oval:org.mitre.oval:def:22145

Definition Id: oval:org.mitre.oval:def:22145
 
Oval ID: oval:org.mitre.oval:def:22145
Title: RHSA-2010:0112: firefox security update (Critical)
Description: Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and 3.6.x before 3.6.2; Thunderbird before 3.0.2; and SeaMonkey before 2.0.3 allow remote attackers to perform cross-origin keystroke capture, and possibly conduct cross-site scripting (XSS) attacks, by using the addEventListener and setTimeout functions in conjunction with a wrapped object. NOTE: this vulnerability exists because of an incomplete fix for CVE-2007-3736.
Family: unix Class: patch
Reference(s): RHSA-2010:0112-01
CESA-2010:0112
CVE-2009-1571
CVE-2009-3988
CVE-2010-0159
CVE-2010-0160
CVE-2010-0162
CVE-2010-0167
CVE-2010-0169
CVE-2010-0171
 Version: 107
Platform(s): Red Hat Enterprise Linux 5
CentOS Linux 5
 Product(s): firefox
xulrunner
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:15802
 
Oval ID: oval:org.mitre.oval:def:15802
Title: The operating system installed on the system is CentOS Linux 5.x
Description: The operating system installed on the system is CentOS Linux 5.x
Family: unix Class: inventory
Reference(s): cpe:/o:centos:centos:5
 Version: 7
Platform(s): CentOS Linux 5
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:22145
Definition Id: oval:org.mitre.oval:def:11414
 
Oval ID: oval:org.mitre.oval:def:11414
Title: The operating system installed on the system is Red Hat Enterprise Linux 5
Description: The operating system installed on the system is Red Hat Enterprise Linux 5.
Family: unix Class: inventory
Reference(s): cpe:/o:redhat:enterprise_linux:5
 Version: 7
Platform(s): Red Hat Enterprise Linux 5
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:22145