{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"important"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2009-3987","title":"Title"},{"category":"description","text":"The GeckoActiveXObject function in Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey before 2.0.1, generates different exception messages depending on whether the referenced COM object is listed in the registry, which allows remote attackers to obtain potentially sensitive information about installed software by making multiple calls that specify the ProgID values of different COM objects.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2009-3987","url":"https://www.suse.com/security/cve/CVE-2009-3987"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 559807 for CVE-2009-3987","url":"https://bugzilla.suse.com/559807"},{"category":"external","summary":"Advisory link for SUSE-SR:2009:020","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/TQKKCXCCJNXZGT3RQKVHND7NFINIQDSH/#TQKKCXCCJNXZGT3RQKVHND7NFINIQDSH"}],"title":"SUSE CVE CVE-2009-3987","tracking":{"current_release_date":"2023-12-09T03:35:22Z","generator":{"date":"2023-02-15T06:01:49Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2009-3987","initial_release_date":"2023-02-15T06:01:49Z","revision_history":[{"date":"2023-02-15T06:01:49Z","number":"2","summary":"Current version"},{"date":"2023-12-08T05:12:25Z","number":"3","summary":"Current version"},{"date":"2023-12-09T03:35:22Z","number":"4","summary":"Current version"}],"status":"interim","version":"4"}}}