Oval Definition:	oval:org.mitre.oval:def:12348
Revision Date: 2014-10-06 Version: 27 Title: Multiple cross-site scripting (XSS) vulnerabilities in the rendering engine in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11 Description: Multiple cross-site scripting (XSS) vulnerabilities in the rendering engine in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, allow remote attackers to inject arbitrary web script or HTML via (1) x-mac-arabic, (2) x-mac-farsi, or (3) x-mac-hebrew characters that may be converted to angle brackets during rendering. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2010-3770 Platform(s): Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows XP Product(s): Mozilla Firefox Mozilla SeaMonkey Definition Synopsis Related to Mozilla Firefox Mozilla Firefox Mainline release is installed AND Check for vulnerable version Mozilla Firefox Mainline version is before 3.5.16 OR Mozilla Firefox Mainline version is 3.6.x before 3.6.13 OR Related to Mozilla SeaMonkey Mozilla Seamonkey is installed AND Check if the version of Mozilla Seamonkey is before 2.0.11
BACK