Oval Definition:	oval:org.mitre.oval:def:1968
Revision Date: 2011-02-21 Version: 6 Title: Mozilla Security Check of js_ValueToFunctionObject() Can Be Circumvented Description: Unspecified vulnerability in Firefox and Thunderbird 1.5 before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to bypass the js_ValueToFunctionObject check and execute arbitrary code via unknown vectors involving setTimeout and Firefox' ForEach method. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2006-1726 Platform(s): Microsoft Windows 2000 Microsoft Windows Server 2003 Microsoft Windows XP Product(s): mozilla Definition Synopsis Mozilla Firefox version 1.5 is installed and has NOT been patched with version 1.5.0.2 Mozilla Firefox version 1.5 is installed AND Firefox version 1.5 or earlier is installed AND NOT The version of Firefox.exe is greater than or equal to 1.8.20060.30804 (v1.5.0.2) OR Mozilla Firefox version 1.5.0.1 is installed Mozilla Firefox version 1.5.0.1 is installed AND Firefox version 1.5.0.1 is installed OR Mozilla Thunderbird version 1.5 is installed and has NOT been patched with version 1.5.0.2 Thunderbird version 1.5 or earlier is installed AND Mozilla Thunderbird version 1.5 is installed AND NOT The version of thunderbird.exe is greater than or equal to 1.8.20060.30803 (v1.5.0.2) OR SeaMonkey version 1.0 or earlier is installed SeaMonkey version 1.0 or earlier is installed AND SeaMonkey version 1.0 or earlier is installed
BACK