Oval Definition:oval:org.mitre.oval:def:14202
Revision Date:2014-10-06Version:29
Title:Mozilla Firefox 4.x through 7.0 and Thunderbird 5.0 through 7.0 perform access control without checking for use of the NoWaiverWrapper wrapper, which allows remote attackers to gain privileges via a crafted web site.
Description:Mozilla Firefox 4.x through 7.0 and Thunderbird 5.0 through 7.0 perform access control without checking for use of the NoWaiverWrapper wrapper, which allows remote attackers to gain privileges via a crafted web site.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2011-3655
Platform(s):Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Mozilla Firefox
Mozilla Thunderbird
Definition Synopsis
  • Determine if the version of Mozilla Firefox is equal to 4.0
  • Mozilla Firefox Mainline release is installed
  • AND Check for vulnerable version
  • Mozilla Firefox Mainline version is equal to 4.0
  • OR Determine if the version of Mozilla Thunderbird is equal to 5.0
  • Mozilla Thunderbird Mainline release is installed
  • AND Determine if the version of Mozilla Thunderbird is equal to 5.0
  • OR Determine if the version of Mozilla Thunderbird is equal to 6.0
  • Mozilla Thunderbird Mainline release is installed
  • AND Determine if the version of Mozilla Thunderbird is equal to 6.0
  • OR Determine if the version of Mozilla Firefox is equal to 6.0
  • Mozilla Firefox Mainline release is installed
  • AND Check for vulnerable version
  • Mozilla Firefox Mainline version is equal to 6.0
  • OR Determine if the version of Mozilla Firefox is equal to 5.0
  • Mozilla Firefox Mainline release is installed
  • AND Check for vulnerable version
  • Mozilla Firefox Mainline version is equal to 5.0
  • OR Determine if the version of Mozilla Firefox is equal to 7.0
  • Mozilla Firefox Mainline release is installed
  • AND Mozilla Firefox Mainline version is equal to 7.0
  • OR Determine if the version of Mozilla Thunderbird is equal to 7.0
  • Mozilla Thunderbird Mainline release is installed
  • AND Determine if the version of Mozilla Thunderbird is equal to 7.0
    • BACK