Oval Definition:oval:org.mitre.oval:def:7339
Revision Date:2014-10-06Version:25
Title:Vulnerability in js_InitRandom function in the JavaScript implementation in Mozilla Firefox and Seamonkey
Description:The js_InitRandom function in the JavaScript implementation in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, and SeaMonkey before 2.0.5, uses the current time for seeding of a random number generator, which makes it easier for remote attackers to guess the seed value via a brute-force attack, a different vulnerability than CVE-2008-5913.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2010-3400
Platform(s):Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Mozilla Firefox
Definition Synopsis
  • Check if Mozilla Firefox version is 3.5.x before 3.5.10 or 3.6.x before 3.6.4 and installed or not
  • Check if Mozilla Firefox either version 3.5.x before 3.5.10 or 3.6.x before 3.6.4 is installed
  • Mozilla Firefox Mainline version is 3.5.x before 3.5.10
  • OR Mozilla Firefox Mainline version is 3.6.x before 3.6.4
  • AND Mozilla Firefox Mainline release is installed
  • OR Check if Mozilla Seamonkey version is 2.0.x before 2.0.5
  • Check if Mozilla Seamonkey version is before 2.0.5
  • AND Determine if the version of Mozilla Seamonkey is greater than or equal to 2.0
  • AND Mozilla Seamonkey is installed
  • BACK