Oval Definition:	oval:org.cisecurity:def:1100
Revision Date: 2016-09-23 Version: 12 Title: Vulnerability in the JavaScript engine in Mozilla Firefox before 46.0, Firefox ESR 38.x before 38.8, and Firefox ESR 45.x before 45.1 - CVE-2016-2808 Description: The watch implementation in the JavaScript engine in Mozilla Firefox before 46.0, Firefox ESR 38.x before 38.8, and Firefox ESR 45.x before 45.1 allows remote attackers to execute arbitrary code or cause a denial of service (generation-count overflow, out-of-bounds HashMap write access, and application crash) via a crafted web site. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2016-2808 Platform(s): Microsoft Windows 10 Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows Vista Microsoft Windows XP Product(s): Mozilla Firefox Mozilla Firefox ESR Definition Synopsis Mozilla Firefox + vulnerable version Mozilla Firefox is installed AND vulnerable version Check if Firefox version is less than 46.0 OR Mozilla Firefox ESR + vulnerable version Mozilla Firefox ESR is installed AND vulnerable version Firefox ESR 45 Check if Firefox ESR version is less than 45.1 AND Check if Firefox ESR version is greater than or equal to 45.0 OR Firefox ESR 38 Check if Firefox ESR version is less than 38.8 AND Check if Firefox ESR version is greater than or equal to 38.0
BACK