Oval Definition:	oval:org.mitre.oval:def:100004
Revision Date: 2007-05-09 Version: 6 Title: Firefox and Mozilla DOM Node Spoofing Description: Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 does not properly verify the associated types of DOM node names within the context of their namespaces, which allows remote attackers to modify certain tag properties, possibly leading to execution of arbitrary script or code, as demonstrated using an XHTML document with IMG tags with custom properties ("XHTML node spoofing"). Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2005-2269 Platform(s): Microsoft Windows 2000 Microsoft Windows NT Microsoft Windows Server 2003 Microsoft Windows XP Product(s): mozilla Definition Synopsis Mozilla Firefox version 1.0.4 or earlier is installed Firefox version 1.0.4 or earlier is installed AND Mozilla Firefox version 1.0.4 or earlier is installed OR Mozilla Suite version 1.7.8 or earlier is installed Mozilla Suite version 1.7.8 or earlier is installed AND Mozilla Suite version 1.7.8 or earlier is installed
BACK