Oval Definition:	oval:org.mitre.oval:def:12433
Revision Date: 2014-10-06 Version: 21 Title: Denial of service vulnerability in Mozilla Firefox 4.0 and earlier through Javascript P element Description: Mozilla Firefox 3.6.3 on Windows XP SP3 allows remote attackers to cause a denial of service (memory consumption and application crash) via JavaScript code that creates multiple arrays containing elements with long string values, and then appends long strings to the content of a P element, related to the gfxWindowsFontGroup::MakeTextRun function in xul.dll, a different vulnerability than CVE-2009-1571. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2010-1986 Platform(s): Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP Product(s): Mozilla Firefox Definition Synopsis Mozilla Firefox Mainline release is installed AND Check for vulnerable version Mozilla Firefox Mainline version is less then or equal to 4.0
BACK