OVAL Reference oval:org.mitre.oval:def:22738

Oval Definition:

oval:org.mitre.oval:def:22738

Revision Date:	2014-05-26	Version:	57
Title:	ELSA-2008:1036: firefox security update (Critical)
Description:	Unspecified vulnerability in the session-restore feature in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19 allows remote attackers to bypass the same origin policy, inject content into documents associated with other domains, and conduct cross-site scripting (XSS) attacks via unknown vectors related to restoration of SessionStore data.
Family:	unix	Class:	patch
Status:	ACCEPTED	Reference(s):	CVE-2008-5500 CVE-2008-5501 CVE-2008-5502 CVE-2008-5505 CVE-2008-5506 CVE-2008-5507 CVE-2008-5508 CVE-2008-5510 CVE-2008-5511 CVE-2008-5512 CVE-2008-5513 ELSA-2008:1036-01
Platform(s):	Oracle Linux 5	Product(s):	firefox nspr nss xulrunner
Definition Synopsis
Oracle Linux 5.x AND rpm test firefox is earlier than 0:3.0.5-1.el5_2 OR xulrunner-devel-unstable is earlier than 0:1.9.0.5-1.el5_2 OR xulrunner is earlier than 0:1.9.0.5-1.el5_2 OR xulrunner-devel is earlier than 0:1.9.0.5-1.el5_2 OR nspr-devel is earlier than 0:4.7.3-2.el5 OR nspr is earlier than 0:4.7.3-2.el5 OR nss is earlier than 0:3.12.2.0-2.el5 OR nss-tools is earlier than 0:3.12.2.0-2.el5 OR nss-pkcs11-devel is earlier than 0:3.12.2.0-2.el5 OR nss-devel is earlier than 0:3.12.2.0-2.el5