OVAL Reference oval:com.ubuntu.precise:def:20123991000

Oval Definition:

oval:com.ubuntu.precise:def:20123991000

Revision Date:	2012-10-10	Version:	1
Title:	CVE-2012-3991 on Ubuntu 12.04 LTS (precise) - high.
Description:	Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly restrict JSAPI access to the GetProperty function, which allows remote attackers to bypass the Same Origin Policy and possibly have unspecified other impact via a crafted web site.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2012-3991
Platform(s):	Ubuntu 12.04 LTS	Product(s):
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'firefox' package in precise was vulnerable but has been fixed (note: '16.0+build1-0ubuntu0.12.04.1'). OR The 'thunderbird' package in precise was vulnerable but has been fixed (note: '16.0+build1-0ubuntu0.12.04.1').