• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: Mozilla Firefox/Thunderbird/SeaMonkey Character Encoding Cross-Site Scripting Vulnerabilities

Severity: MODERATE

Description:

Mozilla Firefox, Thunderbird, and SeaMonkey are prone to multiple cross-site scripting vulnerabilities because of a design error. The HTML parser used by these applications fails to properly handle certain character encodings.

These issues are as follows:

- Backspace characters are treated as whitespace, contrary to HTML specifications. This may lead to cross-site scripting attacks on sites that filter user-supplied input according to the specification.

- The control character '0x80' under Shift_JIS encoding is parsed incorrectly, which may allow input filters to be circumvented.

- Several zero-length non-ASCII sequences encoded in ISO-2022-JP, ISO-2022-CN, ISO-2022-KR, and HZ-GB-2312 are also parsed incorrectly, which may permit an attacker to evade input filtering.

Attackers can exploit these issues to execute arbitrary script code in the context of the user running the application and to steal cookie-based authentication credentials and other sensitive data that may aid in further attacks.

Affected Products:

• Gentoo Linux
• MandrakeSoft Linux Mandrake 10.2.0
• MandrakeSoft Linux Mandrake 10.2.0 x86_64
• Mozilla Firefox 0.10.0
• Mozilla Firefox 0.10.1
• Mozilla Firefox 0.8.0
• Mozilla Firefox 0.9.0
• Mozilla Firefox 0.9.0 rc
• Mozilla Firefox 0.9.1
• Mozilla Firefox 0.9.2
• Mozilla Firefox 0.9.3
• Mozilla Firefox 1.0.0
• Mozilla Firefox 1.0.1
• Mozilla Firefox 1.0.2
• Mozilla Firefox 1.0.3
• Mozilla Firefox 1.0.4
• Mozilla Firefox 1.0.5
• Mozilla Firefox 1.0.5
• Mozilla Firefox 1.0.6
• Mozilla Firefox 1.0.7
• Mozilla Firefox 1.0.8
• Mozilla Firefox 1.5.0
• Mozilla Firefox 1.5.0 12
• Mozilla Firefox 1.5.0 beta 1
• Mozilla Firefox 1.5.0 beta 2
• Mozilla Firefox 1.5.0.1
• Mozilla Firefox 1.5.0.10
• Mozilla Firefox 1.5.0.11
• Mozilla Firefox 1.5.0.11
• Mozilla Firefox 1.5.0.2
• Mozilla Firefox 1.5.0.2
• Mozilla Firefox 1.5.0.3
• Mozilla Firefox 1.5.0.4
• Mozilla Firefox 1.5.0.5
• Mozilla Firefox 1.5.0.6
• Mozilla Firefox 1.5.0.6
• Mozilla Firefox 1.5.0.7
• Mozilla Firefox 1.5.0.8
• Mozilla Firefox 1.5.0.8
• Mozilla Firefox 1.5.0.9
• Mozilla Firefox 2.0
• Mozilla Firefox 2.0 RC2
• Mozilla Firefox 2.0 RC3
• Mozilla Firefox 2.0 beta 1
• Mozilla Firefox 2.0.0.1
• Mozilla Firefox 2.0.0.10
• Mozilla Firefox 2.0.0.10
• Mozilla Firefox 2.0.0.10
• Mozilla Firefox 2.0.0.11
• Mozilla Firefox 2.0.0.2
• Mozilla Firefox 2.0.0.3
• Mozilla Firefox 2.0.0.3
• Mozilla Firefox 2.0.0.4
• Mozilla Firefox 2.0.0.5
• Mozilla Firefox 2.0.0.6
• Mozilla Firefox 2.0.0.7
• Mozilla Firefox 2.0.0.8
• Mozilla Firefox 2.0.0.9
• Mozilla SeaMonkey 1.0
• Mozilla SeaMonkey 1.0 dev
• Mozilla SeaMonkey 1.0.1
• Mozilla SeaMonkey 1.0.2
• Mozilla SeaMonkey 1.0.3
• Mozilla SeaMonkey 1.0.5
• Mozilla SeaMonkey 1.0.6
• Mozilla SeaMonkey 1.0.7
• Mozilla SeaMonkey 1.0.8
• Mozilla SeaMonkey 1.0.9
• Mozilla SeaMonkey 1.0.99
• Mozilla SeaMonkey 1.1 beta
• Mozilla SeaMonkey 1.1.1
• Mozilla SeaMonkey 1.1.2
• Mozilla SeaMonkey 1.1.3
• Mozilla SeaMonkey 1.1.4
• Mozilla SeaMonkey 1.1.5
• Mozilla SeaMonkey 1.1.6
• Mozilla SeaMonkey 1.1.7
• Mozilla Thunderbird 0.6.0
• Mozilla Thunderbird 0.7.0
• Mozilla Thunderbird 0.7.1
• Mozilla Thunderbird 0.7.2
• Mozilla Thunderbird 0.7.3
• Mozilla Thunderbird 0.8.0
• Mozilla Thunderbird 0.9.0
• Mozilla Thunderbird 1.0.0
• Mozilla Thunderbird 1.0.1
• Mozilla Thunderbird 1.0.2
• Mozilla Thunderbird 1.0.5
• Mozilla Thunderbird 1.0.6
• Mozilla Thunderbird 1.0.7
• Mozilla Thunderbird 1.0.8
• Mozilla Thunderbird 1.5.0
• Mozilla Thunderbird 1.5.0 beta 2
• Mozilla Thunderbird 1.5.0.1
• Mozilla Thunderbird 1.5.0.10
• Mozilla Thunderbird 1.5.0.12
• Mozilla Thunderbird 1.5.0.13
• Mozilla Thunderbird 1.5.0.14
• Mozilla Thunderbird 1.5.0.2
• Mozilla Thunderbird 1.5.0.4
• Mozilla Thunderbird 1.5.0.5
• Mozilla Thunderbird 1.5.0.7
• Mozilla Thunderbird 1.5.0.8
• Mozilla Thunderbird 1.5.0.9
• Mozilla Thunderbird 2.0.0.4
• Mozilla Thunderbird 2.0.0.5
• Mozilla Thunderbird 2.0.0.6
• Mozilla Thunderbird 2.0.0.8
• Mozilla Thunderbird 2.0.0.9
• RedHat Desktop 4.0.0
• RedHat Enterprise Linux AS 4
• RedHat Enterprise Linux ES 4
• RedHat Enterprise Linux WS 4
• RedHat Fedora Core3
• S.u.S.E. Linux Personal 9.0.0
• S.u.S.E. Linux Personal 9.0.0 x86_64
• S.u.S.E. Linux Personal 9.1.0
• S.u.S.E. Linux Personal 9.1.0 x86_64
• S.u.S.E. Linux Personal 9.2.0
• S.u.S.E. Linux Personal 9.2.0 x86_64
• Slackware Linux -current
• Slackware Linux 10.0.0
• Slackware Linux 10.1.0
• Slackware Linux 9.1.0
• Sun OpenSolaris build snv_89
• Sun Solaris 10
• Sun Solaris 10_x86

References:

• Mozilla: Mozilla Firefox Homepage
• Mozilla Foundation: MFSA 2008-13 Multiple XSS vulnerabilities from character encoding
• Sun: Solution 238492 : Multiple Security Vulnerabilities in Solaris 10 Firefox may
• Sun Microsystems: Solution 239546: Security Vulnerabilities in Thunderbird for Solaris May Result

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.