Oval Definition:oval:org.mitre.oval:def:9375
Revision Date:2013-04-29Version:13
Title:The XMLDocument::load function in Mozilla Firefox before 3.5.9 and 3.6.x before 3.6.2, Thunderbird before 3.0.4, and SeaMonkey before 2.0.4 does not perform the expected nsIContentPolicy checks during loading of content by XML documents, which allows attackers to bypass intended access restrictions via crafted content.
Description:The XMLDocument::load function in Mozilla Firefox before 3.5.9 and 3.6.x before 3.6.2, Thunderbird before 3.0.4, and SeaMonkey before 2.0.4 does not perform the expected nsIContentPolicy checks during loading of content by XML documents, which allows attackers to bypass intended access restrictions via crafted content.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2010-0182
Platform(s):CentOS Linux 4
CentOS Linux 5
Oracle Linux 4
Oracle Linux 5
Red Hat Enterprise Linux 4
Red Hat Enterprise Linux 5
Product(s):
Definition Synopsis
  • OS Section: RHEL4, CentOS4, Oracle Linux 4
  • RHEL4, CentOS4 or Oracle Linux 4
  • The operating system installed on the system is Red Hat Enterprise Linux 4
  • OR CentOS Linux 4.x
  • OR Oracle Linux 4.x
  • AND firefox is earlier than 0:3.6.4-8.el4
  • OR OS Section: RHEL5, CentOS5, Oracle Linux 5
  • RHEL5, CentOS5 or Oracle Linux 5
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • OR The operating system installed on the system is CentOS Linux 5.x
  • OR Oracle Linux 5.x
  • AND Configuration section
  • gnome-python2-extras is earlier than 0:2.14.2-7.el5
  • OR devhelp-devel is earlier than 0:0.12-21.el5
  • OR gnome-python2-libegg is earlier than 0:2.14.2-7.el5
  • OR xulrunner-devel is earlier than 0:1.9.2.4-10.el5
  • OR gnome-python2-gtkhtml2 is earlier than 0:2.14.2-7.el5
  • OR totem is earlier than 0:2.16.7-7.el5
  • OR xulrunner is earlier than 0:1.9.2.4-10.el5
  • OR gnome-python2-gtkspell is earlier than 0:2.14.2-7.el5
  • OR yelp is earlier than 0:2.16.0-26.el5
  • OR devhelp is earlier than 0:0.12-21.el5
  • OR firefox is earlier than 0:3.6.4-8.el5
  • OR totem-mozplugin is earlier than 0:2.16.7-7.el5
  • OR gnome-python2-gtkmozembed is earlier than 0:2.14.2-7.el5
  • OR esc is earlier than 0:1.1.0-12.el5
  • OR totem-devel is earlier than 0:2.16.7-7.el5
    • BACK