Oval Definition:	oval:org.mitre.oval:def:1089
Revision Date: 2007-05-09 Version: 3 Title: XMLHttpRequest Header Spoofing Vulnerability Description: Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to modify HTTP headers of XML HTTP requests via XMLHttpRequest, and possibly use the client to exploit vulnerabilities in servers or proxies, including HTTP request smuggling and HTTP request splitting. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2005-2703 Platform(s): Microsoft Windows 2000 Microsoft Windows NT Microsoft Windows Server 2003 Microsoft Windows XP Product(s): mozilla Definition Synopsis Mozilla Suite version 1.7.10 or earlier is installed Mozilla Suite version 1.7.10 or earlier is installed AND Mozilla Suite version 1.7.10 or earlier is installed OR Mozilla Firefox version 1.0.6 or earlier is installed Firefox version 1.0.6 or earlier is installed AND Mozilla Firefox version 1.0.6 or earlier is installed
BACK