Oval Definition:	oval:com.ubuntu.precise:def:20165265000
Revision Date: 2016-08-04 Version: 1 Title: CVE-2016-5265 on Ubuntu 12.04 LTS (precise) - medium. Description: Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allow user-assisted remote attackers to bypass the Same Origin Policy, and conduct Universal XSS (UXSS) attacks or read arbitrary files, by arranging for the presence of a crafted HTML document and a crafted shortcut file in the same local directory. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-5265 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'firefox' package in precise was vulnerable but has been fixed (note: '48.0+build2-0ubuntu0.12.04.1'). OR NOT While related to the CVE in some way, the 'thunderbird' package in precise is not affected.
BACK