OVAL Reference oval:com.ubuntu.precise:def:20125354000

Oval Definition:

oval:com.ubuntu.precise:def:20125354000

Revision Date:	2012-10-10	Version:	1
Title:	CVE-2012-5354 on Ubuntu 12.04 LTS (precise) - medium.
Description:	Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey before 2.13 do not properly handle navigation away from a web page that has multiple menus of SELECT elements active, which allows remote attackers to conduct clickjacking attacks via vectors involving an XPI file, the window.open method, and the Geolocation API, a different vulnerability than CVE-2012-3984.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2012-5354
Platform(s):	Ubuntu 12.04 LTS	Product(s):
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'firefox' package in precise was vulnerable but has been fixed (note: '16.0+build1-0ubuntu0.12.04.1'). OR The 'thunderbird' package in precise was vulnerable but has been fixed (note: '16.0+build1-0ubuntu0.12.04.1').