Oval Definition:	oval:org.cisecurity:def:1899
Revision Date: 2017-03-10 Version: 5 Title: Disclosure of local file existence through TRACK tag error messages - CVE-2017-5387 Description: The existence of a specifically requested local file can be found due to the double firing of the onerror when the source attribute on a tag refers to a file that does not exist if the source page is loaded locally. Family: windows Class: vulnerability Status: INTERIM Reference(s): MFSA2017-01 CVE-2017-5387 Platform(s): Microsoft Windows 10 Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows Server 2016 Microsoft Windows Vista Microsoft Windows XP Product(s): Mozilla Firefox Mainline Definition Synopsis Mozilla Firefox Mainline release is installed AND Check if Mozilla Firefox Mainline version less than 51.0
BACK