Oval Definition:
oval:org.mitre.oval:def:1348
Revision Date
:
2005-10-12
Version
:
3
Title
:
RHE3 XBL Script Security Bypass Vulnerability
Description
:
Firefox before 1.0.5, Thunderbird before 1.0.5, Mozilla before 1.7.9, Netscape 8.0.2, and K-Meleon 0.9 runs XBL scripts even when Javascript has been disabled, which makes it easier for remote attackers to bypass such protection.
Family
:
unix
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2005-2261
Platform(s)
:
Red Hat Enterprise Linux 3
Product(s)
:
mozilla
Definition Synopsis
Software section
Red Hat Enterprise 3 is installed
AND
mozilla RPM is earlier than 37:1.7.10-1.1.3.1
AND
Configuration section
/usr/bin/mozilla is executable
BACK