Oval Definition:oval:org.opensuse.security:def:20093385
Revision Date:2015-11-16Version:1
Title:CVE-2009-3385
Description:
The mail component in Mozilla SeaMonkey before 1.1.19 does not properly restrict execution of scriptable plugin content, which allows user-assisted remote attackers to obtain sensitive information via crafted content in an IFRAME element in an HTML e-mail message, as demonstrated by a Flash object that sends arbitrary local files during a reply or forward operation.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2009-3385
Platform(s):Open Enterprise Server
openSUSE 11.0
openSUSE 11.1
SUSE CORE 9 for AMD64 and Intel EM64T
Product(s):
Definition Synopsis
  • Release Information
  • suse110 is installed
  • seamonkey-dom-inspector less than 1.1.19-0.1
  • OR seamonkey-irc less than 1.1.19-0.1
  • OR seamonkey-mail less than 1.1.19-0.1
  • OR seamonkey-spellchecker less than 1.1.19-0.1
  • OR seamonkey-venkman less than 1.1.19-0.1
  • OR seamonkey less than 1.1.19-0.1
  • OR
  • suse111 is installed
  • seamonkey-dom-inspector less than 1.1.19-0.1.1
  • OR seamonkey-irc less than 1.1.19-0.1.1
  • OR seamonkey-mail less than 1.1.19-0.1.1
  • OR seamonkey-spellchecker less than 1.1.19-0.1.1
  • OR seamonkey-venkman less than 1.1.19-0.1.1
  • OR seamonkey less than 1.1.19-0.1.1
  • OR Package Information
  • sles9-oes is installed
  • AND
  • mozilla-devel less than 1.8_seamonkey_1.1.19-0.1
  • OR mozilla-dom-inspector less than 1.8_seamonkey_1.1.19-0.1
  • OR mozilla-irc less than 1.8_seamonkey_1.1.19-0.1
  • OR mozilla-mail less than 1.8_seamonkey_1.1.19-0.1
  • OR mozilla-venkman less than 1.8_seamonkey_1.1.19-0.1
  • OR mozilla less than 1.8_seamonkey_1.1.19-0.1
    • BACK