Oval Definition:	oval:org.mitre.oval:def:23971
Revision Date: 2014-05-26 Version: 109 Title: ELSA-2012:1210: firefox security update (Critical) Description: The web console in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, and Thunderbird ESR 10.x before 10.0.7 allows user-assisted remote attackers to execute arbitrary JavaScript code with chrome privileges via a crafted web site that injects this code and triggers an eval operation. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2012-1970 CVE-2012-1972 CVE-2012-1973 CVE-2012-1974 CVE-2012-1975 CVE-2012-1976 CVE-2012-3956 CVE-2012-3957 CVE-2012-3958 CVE-2012-3959 CVE-2012-3960 CVE-2012-3961 CVE-2012-3962 CVE-2012-3963 CVE-2012-3964 CVE-2012-3966 CVE-2012-3967 CVE-2012-3968 CVE-2012-3969 CVE-2012-3970 CVE-2012-3972 CVE-2012-3976 CVE-2012-3978 CVE-2012-3980 ELSA-2012:1210-01 Platform(s): Oracle Linux 5 Oracle Linux 6 Product(s): firefox xulrunner Definition Synopsis rpm test Oracle Linux 5.x AND rpm test firefox is earlier than 0:10.0.7-1.el5_8 OR xulrunner-devel is earlier than 0:10.0.7-2.el5_8 OR xulrunner is earlier than 0:10.0.7-2.el5_8 OR rpm test Oracle Linux 6.x AND rpm test xulrunner-devel is earlier than 0:10.0.7-1.el6_3 OR xulrunner is earlier than 0:10.0.7-1.el6_3 OR firefox is earlier than 0:10.0.7-1.el6_3
BACK