oval:org.mitre.oval:def:7370
| Definition Id: oval:org.mitre.oval:def:7370 | |||
| Oval ID: | oval:org.mitre.oval:def:7370 | ||
| Title: | Vulnerability in the Math.random function in the JavaScript implementation in Mozilla Firefox | ||
| Description: | The Math.random function in the JavaScript implementation in Mozilla Firefox 3.5.10 through 3.5.11, 3.6.4 through 3.6.8, and 4.0 Beta1 uses a random number generator that is seeded only once per document object, which makes it easier for remote attackers to track a user, or trick a user into acting upon a spoofed pop-up message, by calculating the seed value, related to a "temporary footprint" and an "in-session phishing attack." NOTE: this vulnerability exists because of an incorrect fix for CVE-2008-5913. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2010-3171 | Version: | 11 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP | Product(s): | Mozilla Firefox |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:22259 | |||
| Oval ID: | oval:org.mitre.oval:def:22259 | ||
| Title: | Mozilla Firefox Mainline release is installed | ||
| Description: | The browser installed on the system is Mozilla Firefox Mainline release | ||
| Family: | windows | Class: | inventory |
| Reference(s): | cpe:/a:mozilla:firefox | Version: | 9 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2012 | Product(s): | Mozilla Firefox |
| Definition Synopsis: | |||
| Referenced By: | |||
| oval:org.mitre.oval:def:7370 | |||
