Oval Definition:oval:com.ubuntu.precise:def:20131670000
Revision Date:2013-05-16Version:1
Title:CVE-2013-1670 on Ubuntu 12.04 LTS (precise) - medium.
Description:The Chrome Object Wrapper (COW) implementation in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 does not prevent acquisition of chrome privileges during calls to content level constructors, which allows remote attackers to bypass certain read-only restrictions and conduct cross-site scripting (XSS) attacks via a crafted web site.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2013-1670
Platform(s):Ubuntu 12.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 12.04 LTS (precise) is installed.
  • AND Package Information
  • The 'firefox' package in precise was vulnerable but has been fixed (note: '21.0+build1-0ubuntu0.12.04.3').
  • OR The 'thunderbird' package in precise was vulnerable but has been fixed (note: '17.0.6+build1-0ubuntu0.12.04.1').
  • BACK