Oval Definition:oval:org.mitre.oval:def:1073
Revision Date:2013-04-08Version:7
Title:RHE4 Firefox External App Code Acceptance Vulnerability
Description:Firefox before 1.0.5 allows remote attackers to steal information and possibly execute arbitrary code by using standalone applications such as Flash and QuickTime to open a javascript: URL, which is run in the context of the previous page, and may lead to code execution if the standalone application loads a privileged chrome: URL.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2005-2267
Platform(s):Red Hat Enterprise Linux 4
Product(s):mozilla
Definition Synopsis
  • Software section
  • mozilla RPM is earlier than 37:1.7.10-1.4.1
  • AND Red Hat Enterprise 4 is installed
  • AND Configuration section
  • /usr/bin/mozilla is executable
    • BACK