oval:org.mitre.oval:def:23791

Definition Id: oval:org.mitre.oval:def:23791

Oval ID:	oval:org.mitre.oval:def:23791
Title:	ELSA-2011:1441: icedtea-web security update (Moderate)
Description:	The web browser plug-in in IcedTea-Web 1.0.x before 1.0.6 and 1.1.x before 1.1.4 allows remote attackers to bypass the Same Origin Policy (SOP) and execute arbitrary script or establish network connections to unintended hosts via an applet whose origin has the same second-level domain, but a different sub-domain than the targeted domain.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:1441-01 CVE-2011-3377	Version:	6
Platform(s):	Oracle Linux 6	Product(s):	icedtea-web
Definition Synopsis:
Oracle Linux 6.x rpm test icedtea-web-javadoc is earlier than 0:1.0.6-1.el6_1 AND icedtea-web is earlier than 0:1.0.6-1.el6_1

Definition Id: oval:org.mitre.oval:def:16594

Oval ID:	oval:org.mitre.oval:def:16594
Title:	Oracle Linux 6.x
Description:	The operating system installed on the system is Oracle Linux 6.x
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:oracle:linux:6	Version:	5
Platform(s):	Oracle Linux 6	Product(s):
Definition Synopsis:
the installed operating system is part of the Unix family AND Oracle Linux 6.x is installed
Referenced By:
oval:org.mitre.oval:def:23791