Oval Definition:oval:com.ubuntu.precise:def:20131692000
Revision Date:2013-06-25Version:1
Title:CVE-2013-1692 on Ubuntu 12.04 LTS (precise) - medium.
Description:Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not prevent the inclusion of body data in an XMLHttpRequest HEAD request, which makes it easier for remote attackers to conduct cross-site request forgery (CSRF) attacks via a crafted web site.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2013-1692
Platform(s):Ubuntu 12.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 12.04 LTS (precise) is installed.
  • AND Package Information
  • The 'firefox' package in precise was vulnerable but has been fixed (note: '22.0+build1-0ubuntu0.12.04.1').
  • OR The 'thunderbird' package in precise was vulnerable but has been fixed (note: '17.0.7+build1-0ubuntu0.12.04.1').
  • BACK