OVAL Reference oval:com.ubuntu.precise:def:20131714000

Oval Definition:

oval:com.ubuntu.precise:def:20131714000

Revision Date:	2013-08-06	Version:	1
Title:	CVE-2013-1714 on Ubuntu 12.04 LTS (precise) - medium.
Description:	The Web Workers implementation in Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, Thunderbird ESR 17.x before 17.0.8, and SeaMonkey before 2.20 does not properly restrict XMLHttpRequest calls, which allows remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via unspecified vectors.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2013-1714
Platform(s):	Ubuntu 12.04 LTS	Product(s):
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'firefox' package in precise was vulnerable but has been fixed (note: '23.0+build2-0ubuntu0.12.04.1'). OR The 'thunderbird' package in precise was vulnerable but has been fixed (note: '17.0.8+build1-0ubuntu0.12.04.1').