Oval Definition:	oval:org.mitre.oval:def:7030
Revision Date: 2014-10-06 Version: 27 Title: Mozilla Thunderbird, Seamonkey and Firefox Denial of Service Vulnerability Description: The browser engine in Mozilla Firefox 3.x before 3.0.9, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service (application crash) and possibly trigger memory corruption via vectors related to (1) nsAsyncInstantiateEvent::Run, (2) nsStyleContext::Destroy, (3) nsComputedDOMStyle::GetWidth, (4) the xslt_attributeset_ImportSameName.html test case for the XSLT stylesheet compiler, (5) nsXULDocument::SynchronizeBroadcastListener, (6) IsBindingAncestor, (7) PL_DHashTableOperate and nsEditor::EndUpdateViewBatch, and (8) gfxSkipCharsIterator::SetOffsets, and other vectors. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2009-1302 Platform(s): Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows Vista Product(s): Mozilla Firefox Mozilla Seamonkey Mozilla Thunderbird Definition Synopsis Check Mozilla Thunderbird version Mozilla Thunderbird Mainline release is installed AND Thunderbird version is less than or equal to 2.0.0.21 OR Check Mozilla Seamonkey version Mozilla Seamonkey is installed AND Seamonkey version is less than or equal to 1.1.16 OR Check Mozilla Firefox version Mozilla Firefox Mainline release is installed AND Firefox version is less than or equal to 3.0.8
BACK