Oval Definition:	oval:org.mitre.oval:def:100006
Revision Date: 2007-05-09 Version: 6 Title: Firefox External App Code Acceptance Vulnerability Description: Firefox before 1.0.5 allows remote attackers to steal information and possibly execute arbitrary code by using standalone applications such as Flash and QuickTime to open a javascript: URL, which is run in the context of the previous page, and may lead to code execution if the standalone application loads a privileged chrome: URL. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2005-2267 Platform(s): Microsoft Windows 2000 Microsoft Windows NT Microsoft Windows Server 2003 Microsoft Windows XP Product(s): Mozilla Firefox Definition Synopsis Mozilla Firefox version 1.0.4 or earlier is installed Firefox version 1.0.4 or earlier is installed AND Mozilla Firefox version 1.0.4 or earlier is installed
BACK