OVAL Reference oval:org.opensuse.security:def:20090357

Oval Definition:

oval:org.opensuse.security:def:20090357

Revision Date:	2022-06-30	Version:	1
Title:	CVE-2009-0357
Description:	Mozilla Firefox before 3.0.6 and SeaMonkey before 1.1.15 do not properly restrict access from web pages to the (1) Set-Cookie and (2) Set-Cookie2 HTTP response headers, which allows remote attackers to obtain sensitive information from cookies via XMLHttpRequest calls, related to the HTTPOnly protection mechanism.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2009-0357 Mitre CVE-2009-0357 SUSE CVE-2009-0357 SUSE-SA:2009:009 SUSE-SA:2009:009
Platform(s):	openSUSE 10.3 openSUSE 11.1 openSUSE Tumbleweed SUSE CaaS Platform 4.0 SUSE Enterprise Storage 6 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Manager Proxy 4.0 SUSE Manager Retail Branch Server 4.0 SUSE Manager Server 4.0	Product(s):
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information MozillaFirefox-17.0.4esr-0.10 is installed OR MozillaFirefox-translations-17.0.4esr-0.10 is installed
Definition Synopsis
suse103 is installed AND Package Information seamonkey-dom-inspector less than 1.1.16-1.1 OR seamonkey-irc less than 1.1.16-1.1 OR seamonkey-mail less than 1.1.16-1.1 OR seamonkey-spellchecker less than 1.1.16-1.1 OR seamonkey-venkman less than 1.1.16-1.1 OR seamonkey less than 1.1.16-1.1
Definition Synopsis
Release Information suse111 is installed AND MozillaFirefox-branding-upstream less than 3.0.6-0.1.2 OR MozillaFirefox-translations less than 3.0.6-0.1.2 OR MozillaFirefox less than 3.0.6-0.1.2 OR mozilla-xulrunner190-32bit less than 1.9.0.6-0.1.1 OR mozilla-xulrunner190-devel less than 1.9.0.6-0.1.1 OR mozilla-xulrunner190-gnomevfs-32bit less than 1.9.0.6-0.1.1 OR mozilla-xulrunner190-gnomevfs less than 1.9.0.6-0.1.1 OR mozilla-xulrunner190-translations-32bit less than 1.9.0.6-0.1.1 OR mozilla-xulrunner190-translations less than 1.9.0.6-0.1.1 OR mozilla-xulrunner190 less than 1.9.0.6-0.1.1 OR python-xpcom190 less than 1.9.0.6-0.1.1 OR Package Information suse111 is installed AND seamonkey-dom-inspector less than 1.1.16-1.1.2 OR seamonkey-irc less than 1.1.16-1.1.2 OR seamonkey-mail less than 1.1.16-1.1.2 OR seamonkey-spellchecker less than 1.1.16-1.1.2 OR seamonkey-venkman less than 1.1.16-1.1.2 OR seamonkey less than 1.1.16-1.1.2
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND MozillaFirefox-10.0-0.3.2 is installed OR MozillaFirefox-translations-10.0-0.3.2 is installed OR Package Information SUSE Linux Enterprise Server 11 SP3 is installed AND MozillaFirefox-17.0.4esr-0.10.42 is installed OR MozillaFirefox-translations-17.0.4esr-0.10.42 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed AND MozillaFirefox-31.7.0esr-0.8.1 is installed OR MozillaFirefox-translations-31.7.0esr-0.8.1 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND MozillaFirefox-devel-31.7.0esr-0.8.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND MozillaFirefox-10.0-0.3.2 is installed OR MozillaFirefox-translations-10.0-0.3.2 is installed OR Package Information SUSE Linux Enterprise Server 11 SP3 is installed AND MozillaFirefox-17.0.4esr-0.10.42 is installed OR MozillaFirefox-translations-17.0.4esr-0.10.42 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed AND MozillaFirefox-31.7.0esr-0.8.1 is installed OR MozillaFirefox-translations-31.7.0esr-0.8.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND MozillaFirefox-17.0.4esr-0.10.42 is installed OR MozillaFirefox-translations-17.0.4esr-0.10.42 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed AND MozillaFirefox-31.7.0esr-0.8.1 is installed OR MozillaFirefox-translations-31.7.0esr-0.8.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND MozillaFirefox-devel-31.7.0esr-0.8 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1 is installed AND MozillaFirefox-3.5.9-0.1 is installed OR MozillaFirefox-translations-3.5.9-0.1 is installed OR mozilla-xulrunner190-1.9.0.19-0.1 is installed OR mozilla-xulrunner190-32bit-1.9.0.19-0.1 is installed OR mozilla-xulrunner190-gnomevfs-1.9.0.19-0.1 is installed OR mozilla-xulrunner190-translations-1.9.0.19-0.1 is installed OR mozilla-xulrunner190-x86-1.9.0.19-0.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP2 is installed AND MozillaFirefox-10.0-0.3 is installed OR MozillaFirefox-translations-10.0-0.3 is installed OR Package Information SUSE Linux Enterprise Server 11 SP3 is installed AND MozillaFirefox-17.0.4esr-0.10 is installed OR MozillaFirefox-translations-17.0.4esr-0.10 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed AND MozillaFirefox-31.7.0esr-0.8 is installed OR MozillaFirefox-translations-31.7.0esr-0.8 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP1 is installed AND MozillaFirefox-3.5.9-0.1.1 is installed OR MozillaFirefox-translations-3.5.9-0.1.1 is installed OR mozilla-xulrunner190-1.9.0.19-0.1.1 is installed OR mozilla-xulrunner190-32bit-1.9.0.19-0.1.1 is installed OR mozilla-xulrunner190-gnomevfs-1.9.0.19-0.1.1 is installed OR mozilla-xulrunner190-translations-1.9.0.19-0.1.1 is installed OR mozilla-xulrunner190-x86-1.9.0.19-0.1.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP2 is installed AND MozillaFirefox-10.0-0.3.2 is installed OR MozillaFirefox-translations-10.0-0.3.2 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed AND MozillaFirefox-31.7.0esr-0.8.1 is installed OR MozillaFirefox-translations-31.7.0esr-0.8.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP3 is installed AND MozillaFirefox-17.0.4esr-0.10.42 is installed OR MozillaFirefox-translations-17.0.4esr-0.10.42 is installed
Definition Synopsis
openSUSE Tumbleweed is installed AND Package Information MozillaFirefox-92.0-1.2 is installed OR MozillaFirefox-branding-upstream-92.0-1.2 is installed OR MozillaFirefox-devel-92.0-1.2 is installed OR MozillaFirefox-translations-common-92.0-1.2 is installed OR MozillaFirefox-translations-other-92.0-1.2 is installed
Definition Synopsis
Release Information SUSE CaaS Platform 4.0 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed AND Package Information MozillaFirefox is affected OR MozillaFirefox-devel is affected OR MozillaFirefox-translations-common is affected OR MozillaFirefox-translations-other is affected
Definition Synopsis
Release Information SUSE Manager Proxy 4.0 is installed OR SUSE Manager Retail Branch Server 4.0 is installed OR SUSE Manager Server 4.0 is installed AND MozillaFirefox is affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed AND MozillaFirefox is affected OR MozillaFirefox-devel is affected OR MozillaFirefox-translations-common is affected OR MozillaFirefox-translations-other is affected
Definition Synopsis
Release Information SUSE Enterprise Storage 6 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed AND Package Information MozillaFirefox is affected OR MozillaFirefox-devel is affected OR MozillaFirefox-translations-common is affected OR MozillaFirefox-translations-other is affected

BACK