Oval Definition:oval:org.opensuse.security:def:20090357
Revision Date:2022-06-30Version:1
Title:CVE-2009-0357
Description:

Mozilla Firefox before 3.0.6 and SeaMonkey before 1.1.15 do not properly restrict access from web pages to the (1) Set-Cookie and (2) Set-Cookie2 HTTP response headers, which allows remote attackers to obtain sensitive information from cookies via XMLHttpRequest calls, related to the HTTPOnly protection mechanism.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2009-0357
Mitre CVE-2009-0357
SUSE CVE-2009-0357
SUSE-SA:2009:009
SUSE-SA:2009:009
Platform(s):openSUSE 10.3
openSUSE 11.1
openSUSE Tumbleweed
SUSE CaaS Platform 4.0
SUSE Enterprise Storage 6
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Manager Proxy 4.0
SUSE Manager Retail Branch Server 4.0
SUSE Manager Server 4.0
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-17.0.4esr-0.10 is installed
  • OR MozillaFirefox-translations-17.0.4esr-0.10 is installed
    • Definition Synopsis
  • suse103 is installed
  • AND Package Information
  • seamonkey-dom-inspector less than 1.1.16-1.1
  • OR seamonkey-irc less than 1.1.16-1.1
  • OR seamonkey-mail less than 1.1.16-1.1
  • OR seamonkey-spellchecker less than 1.1.16-1.1
  • OR seamonkey-venkman less than 1.1.16-1.1
  • OR seamonkey less than 1.1.16-1.1
    • Definition Synopsis
  • Release Information
  • suse111 is installed
  • AND
  • MozillaFirefox-branding-upstream less than 3.0.6-0.1.2
  • OR MozillaFirefox-translations less than 3.0.6-0.1.2
  • OR MozillaFirefox less than 3.0.6-0.1.2
  • OR mozilla-xulrunner190-32bit less than 1.9.0.6-0.1.1
  • OR mozilla-xulrunner190-devel less than 1.9.0.6-0.1.1
  • OR mozilla-xulrunner190-gnomevfs-32bit less than 1.9.0.6-0.1.1
  • OR mozilla-xulrunner190-gnomevfs less than 1.9.0.6-0.1.1
  • OR mozilla-xulrunner190-translations-32bit less than 1.9.0.6-0.1.1
  • OR mozilla-xulrunner190-translations less than 1.9.0.6-0.1.1
  • OR mozilla-xulrunner190 less than 1.9.0.6-0.1.1
  • OR python-xpcom190 less than 1.9.0.6-0.1.1
  • OR Package Information
  • suse111 is installed
  • AND
  • seamonkey-dom-inspector less than 1.1.16-1.1.2
  • OR seamonkey-irc less than 1.1.16-1.1.2
  • OR seamonkey-mail less than 1.1.16-1.1.2
  • OR seamonkey-spellchecker less than 1.1.16-1.1.2
  • OR seamonkey-venkman less than 1.1.16-1.1.2
  • OR seamonkey less than 1.1.16-1.1.2
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • MozillaFirefox-10.0-0.3.2 is installed
  • OR MozillaFirefox-translations-10.0-0.3.2 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • MozillaFirefox-17.0.4esr-0.10.42 is installed
  • OR MozillaFirefox-translations-17.0.4esr-0.10.42 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • MozillaFirefox-31.7.0esr-0.8.1 is installed
  • OR MozillaFirefox-translations-31.7.0esr-0.8.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND MozillaFirefox-devel-31.7.0esr-0.8.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • MozillaFirefox-10.0-0.3.2 is installed
  • OR MozillaFirefox-translations-10.0-0.3.2 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • MozillaFirefox-17.0.4esr-0.10.42 is installed
  • OR MozillaFirefox-translations-17.0.4esr-0.10.42 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • MozillaFirefox-31.7.0esr-0.8.1 is installed
  • OR MozillaFirefox-translations-31.7.0esr-0.8.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • MozillaFirefox-17.0.4esr-0.10.42 is installed
  • OR MozillaFirefox-translations-17.0.4esr-0.10.42 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • MozillaFirefox-31.7.0esr-0.8.1 is installed
  • OR MozillaFirefox-translations-31.7.0esr-0.8.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND MozillaFirefox-devel-31.7.0esr-0.8 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND
  • MozillaFirefox-3.5.9-0.1 is installed
  • OR MozillaFirefox-translations-3.5.9-0.1 is installed
  • OR mozilla-xulrunner190-1.9.0.19-0.1 is installed
  • OR mozilla-xulrunner190-32bit-1.9.0.19-0.1 is installed
  • OR mozilla-xulrunner190-gnomevfs-1.9.0.19-0.1 is installed
  • OR mozilla-xulrunner190-translations-1.9.0.19-0.1 is installed
  • OR mozilla-xulrunner190-x86-1.9.0.19-0.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • MozillaFirefox-10.0-0.3 is installed
  • OR MozillaFirefox-translations-10.0-0.3 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • MozillaFirefox-17.0.4esr-0.10 is installed
  • OR MozillaFirefox-translations-17.0.4esr-0.10 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • MozillaFirefox-31.7.0esr-0.8 is installed
  • OR MozillaFirefox-translations-31.7.0esr-0.8 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND
  • MozillaFirefox-3.5.9-0.1.1 is installed
  • OR MozillaFirefox-translations-3.5.9-0.1.1 is installed
  • OR mozilla-xulrunner190-1.9.0.19-0.1.1 is installed
  • OR mozilla-xulrunner190-32bit-1.9.0.19-0.1.1 is installed
  • OR mozilla-xulrunner190-gnomevfs-1.9.0.19-0.1.1 is installed
  • OR mozilla-xulrunner190-translations-1.9.0.19-0.1.1 is installed
  • OR mozilla-xulrunner190-x86-1.9.0.19-0.1.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • MozillaFirefox-10.0-0.3.2 is installed
  • OR MozillaFirefox-translations-10.0-0.3.2 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • MozillaFirefox-31.7.0esr-0.8.1 is installed
  • OR MozillaFirefox-translations-31.7.0esr-0.8.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • MozillaFirefox-17.0.4esr-0.10.42 is installed
  • OR MozillaFirefox-translations-17.0.4esr-0.10.42 is installed
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • MozillaFirefox-92.0-1.2 is installed
  • OR MozillaFirefox-branding-upstream-92.0-1.2 is installed
  • OR MozillaFirefox-devel-92.0-1.2 is installed
  • OR MozillaFirefox-translations-common-92.0-1.2 is installed
  • OR MozillaFirefox-translations-other-92.0-1.2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE CaaS Platform 4.0 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND Package Information
  • MozillaFirefox is affected
  • OR MozillaFirefox-devel is affected
  • OR MozillaFirefox-translations-common is affected
  • OR MozillaFirefox-translations-other is affected
    • Definition Synopsis
  • Release Information
  • SUSE Manager Proxy 4.0 is installed
  • OR SUSE Manager Retail Branch Server 4.0 is installed
  • OR SUSE Manager Server 4.0 is installed
  • AND MozillaFirefox is affected
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND
  • MozillaFirefox is affected
  • OR MozillaFirefox-devel is affected
  • OR MozillaFirefox-translations-common is affected
  • OR MozillaFirefox-translations-other is affected
    • Definition Synopsis
  • Release Information
  • SUSE Enterprise Storage 6 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND Package Information
  • MozillaFirefox is affected
  • OR MozillaFirefox-devel is affected
  • OR MozillaFirefox-translations-common is affected
  • OR MozillaFirefox-translations-other is affected
    • BACK