Oval Definition:oval:org.mitre.oval:def:14212
Revision Date:2014-10-06Version:29
Title:Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird before 3.1.6 and 5.0 through 7.0 allows remote attackers to inject arbitrary web script or HTML via crafted text with Shift JIS encoding.
Description:Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird before 3.1.6 and 5.0 through 7.0 allows remote attackers to inject arbitrary web script or HTML via crafted text with Shift JIS encoding.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2011-3648
Platform(s):Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Mozilla Firefox
Mozilla Thunderbird
Definition Synopsis
  • Determine if the version of Mozilla Thunderbird is equal to 6.0
  • Mozilla Thunderbird Mainline release is installed
  • AND Determine if the version of Mozilla Thunderbird is equal to 6.0
  • OR Determine if the version of Mozilla Firefox is less than or equal to 1.8 and is greater than or equal to 1.0
  • Mozilla Firefox Mainline release is installed
  • AND Mozilla Firefox Mainline version is less than or equal to 1.8
  • AND Check for vulnerable version
  • Mozilla Firefox Mainline version is greater than or equal to 1.0
  • OR Determine if the version of Mozilla Thunderbird is less than or equal to 1.7.3 and is greater than or equal to 1.0
  • Mozilla Thunderbird Mainline release is installed
  • AND Determine if the version of Mozilla Thunderbird is less than or equal to 1.7.3
  • AND Determine if the version of Mozilla Thunderbird is greater than or equal to 1.0
  • OR Determine if the version of Mozilla Firefox is less than or equal to 0.10.1 and is greater than or equal to 0.1
  • Mozilla Firefox Mainline release is installed
  • AND Check for vulnerable version
  • Mozilla Firefox Mainline version is less than or equal to 0.10.1
  • AND Check for vulnerable version
  • Mozilla Firefox Mainline version is greater than or equal to 0.1
  • OR Determine if the version of Mozilla Firefox is less than or equal to 3.6.23 and is greater than or equal to 3.0
  • Mozilla Firefox Mainline release is installed
  • AND Mozilla Firefox Mainline version is less than or equal to 3.6.23
  • AND Mozilla Firefox Mainline version is greater than or equal to 3.0
  • OR Determine if the version of Mozilla Thunderbird is less than or equal to 3.1.11 and is greater than or equal to 3.0.1
  • Mozilla Thunderbird Mainline release is installed
  • AND Determine if the version of Mozilla Thunderbird is less than or equal to 3.1.11
  • AND Determine if the version of Mozilla Thunderbird is greater than or equal to 3.0.1
  • OR Determine if the version of Mozilla Firefox is equal to 4.0
  • Mozilla Firefox Mainline release is installed
  • AND Check for vulnerable version
  • Mozilla Firefox Mainline version is equal to 4.0
  • OR Determine if the version of Mozilla Firefox is equal to 6.0
  • Mozilla Firefox Mainline release is installed
  • AND Check for vulnerable version
  • Mozilla Firefox Mainline version is equal to 6.0
  • OR Determine if the version of Mozilla Firefox is equal to 5.0
  • Mozilla Firefox Mainline release is installed
  • AND Check for vulnerable version
  • Mozilla Firefox Mainline version is equal to 5.0
  • OR Determine if the version of Mozilla Thunderbird is less than or equal to 0.9 and is greater than or equal to 0.1
  • Mozilla Thunderbird Mainline release is installed
  • AND Determine if the version of Mozilla Thunderbird is less than or equal to 0.9
  • AND Determine if the version of Mozilla Thunderbird is greater than or equal to 0.1
  • OR Determine if the version of Mozilla Thunderbird is less than or equal to 2.0.0.23 and is greater than or equal to 2.0.0.0
  • Mozilla Thunderbird Mainline release is installed
  • AND Determine if the version of Mozilla Thunderbird is less than or equal to 2.0.0.23
  • AND Determine if the version of Mozilla Thunderbird is greater than or equal to 2.0.0.0
  • OR Determine if the version of Mozilla Thunderbird is equal to 5.0
  • Mozilla Thunderbird Mainline release is installed
  • AND Determine if the version of Mozilla Thunderbird is equal to 5.0
  • OR Determine if the version of Mozilla Firefox is less than or equal to 2.0.0.20 and is greater than or equal to 2.0.0.1
  • Mozilla Firefox Mainline release is installed
  • AND Check for vulnerable version
  • Mozilla Firefox Mainline version is less than or equal to 2.0.0.20
  • AND Check for vulnerable version
  • Mozilla Firefox Mainline version is greater than or equal to 2.0.0.1
  • OR Determine if the version of Mozilla Firefox is equal to 7.0
  • Mozilla Firefox Mainline release is installed
  • AND Mozilla Firefox Mainline version is equal to 7.0
  • OR Determine if the version of Mozilla Thunderbird is equal to 7.0
  • Mozilla Thunderbird Mainline release is installed
  • AND Determine if the version of Mozilla Thunderbird is equal to 7.0
    • BACK