J-Security Center

Latest Attack Object Updates
  • IDP Daily Update #1537
    posted: 11/06/09
  • NSM Daily Update #1537
    posted: 11/06/09
  • Deep Inspection 5.3r5 and above, 5.4, 6.0 #1537
    posted: 11/06/09
  • Deep Inspection 5.1 and 5.2 #1435
    posted: 11/06/09
  • Deep Inspection 5.0, 5.3r4 and below #1132
    posted: 03/28/08 (04/01/08 for 5.0)
  • Antivirus
    posted: 11/05/09

Title: Mozilla Firefox/SeaMonkey/Thunderbird Multiple Remote Vulnerabilities

Severity: HIGH

Description:

The Mozilla Foundation has released multiple security advisories specifying various vulnerabilities in Firefox 2.0.0.16 and prior versions, Firefox 3.0.1 and prior versions, Thunderbird 2.0.0.16 and prior versions, and SeaMonkey 1.1.11 and prior versions.

The following issues have been reported:

1. MFSA 2008-44: A directory-traversal vulnerability occurs on Linux platforms when the 'resource:' protocol is used together with URL-encoded slashes.

A security-bypass vulnerability also occurs and can be used to bypass security restrictions imposed on local HTML files. Attackers can use this to read information about the system and prompt the user to save the information to a file.

The issues are tracked by CVE-2008-4067 and CVE-2008-4068.

2. MFSA 2008-43: A security vulnerability occurs because certain BOM characters are stripped from JavaScript code before it is executed. This can cause the code, which should be treated as part of a quoted text, to execute. Attackers could use this issue to bypass certain filters and carry out cross-site scripting attacks. The issue is tracked by CVE-2008-4065.

An error in the HTML parser occurs because the parser ignores certain HTML-escaped low surrogate characters. Attackers could use this issue to bypass naive script filters and carry out cross-site scripting attacks. This issue affects only Firefox 2 and is tracked by CVE-2008-4066.

3. MFSA 2008-42: Multiple memory-corruption vulnerabilities reside in the browser engine. These issues can be used to cause denial-of-service conditions or potentially execute arbitrary code in the context of the application. The issues occur in the layout engine (CVE-2008-4061, CVE-2008-4063), JavaScript engine (CVE-2008-4062), and graphics rendering engine (CVE-2008-4064). Note that issues identified by CVE-2008-4063 and CVE-2008-4064 affect only Firefox 3.

4. MFSA 2008-41: Multiple privilege-escalation issues can be used to pollute 'XPCNativeWrappers' and execute arbitrary code with chrome privileges. The issues are tracked by CVE-2008-4058 and CVE-2008-4059. The CVE-2008-4059 issue affects only Firefox 2.

The 'document.loadBindingDocument()' function and XSLT can create documents that do not have script-handling objects. This vulnerability can be used to execute arbitrary script code with chrome privileges. This issues is identified by CVE-2008-4060.

5. MFSA 2008-40: A variant of a previously reported vulnerability in Internet Explorer occurs in Firefox. The issue occurs because it's possible to move the content window while the mouse is being clicked. This would cause an item to be dragged and not clicked on, potentially allowing the attacker to trick a user into downloading a file or performing drag-and-drop operations. The issue is tracked by CVE-2008-3837.

6. MFSA 2008-39: Multiple privilege-escalation vulnerabilities in 'feedWriter' may allow attackers to execute scripts from page content with chrome privileges by using feed preview pages and an unspecified XSS flaw. The issues do not affect Firefox 3 and are tracked by CVE-2008-3836.

7. MFSA 2008-38: A vulnerability could allow attackers to bypass the same-origin check in 'nsXMLDocument::OnChannelRedirect()'. This could allow JavaScript code to run in the context of a different site. This issue does not affect Firefox 3 and is tracked by CVE-2008-3835.

8. MFSA 2008-45: An information-disclosure issue in the XBM decoder may allow the page content to read random small chunks of uninitialized memory. This issue does not affect Firefox 3 and is tracked by CVE-2008-4069.

No further details are currently available. We will update this BID as more information emerges.

Affected Products:

  • Avaya Interactive Response 4.0
  • Avaya Intuity AUDIX
  • Avaya Intuity AUDIX LX 2.0
  • Avaya Message Networking
  • Avaya Message Networking 3.1
  • Avaya Message Networking MN 3.1
  • Avaya Messaging Application Server
  • Avaya Messaging Application Server MM 1.1
  • Avaya Messaging Application Server MM 2.0
  • Avaya Messaging Application Server MM 3.0
  • Avaya Messaging Application Server MM 3.1
  • Avaya Messaging Storage Server
  • Avaya Messaging Storage Server 1.0
  • Avaya Messaging Storage Server 2.0
  • Avaya Messaging Storage Server 3.1
  • Avaya Messaging Storage Server 4.0
  • Avaya Messaging Storage Server MM3.0
  • Avaya Messaging Storage Server MSS 3.0
  • Debian Iceweasel
  • Debian Linux 4.0
  • Debian Linux 4.0 alpha
  • Debian Linux 4.0 amd64
  • Debian Linux 4.0 arm
  • Debian Linux 4.0 hppa
  • Debian Linux 4.0 ia-32
  • Debian Linux 4.0 ia-64
  • Debian Linux 4.0 m68k
  • Debian Linux 4.0 mips
  • Debian Linux 4.0 mipsel
  • Debian Linux 4.0 powerpc
  • Debian Linux 4.0 s/390
  • Debian Linux 4.0 sparc
  • Debian Xulrunner
  • Linux kernel 2.6.5
  • MandrakeSoft Corporate Server 3.0.0
  • MandrakeSoft Corporate Server 3.0.0 x86_64
  • MandrakeSoft Corporate Server 4.0
  • MandrakeSoft Corporate Server 4.0.0 x86_64
  • MandrakeSoft Linux Mandrake 2008.0
  • MandrakeSoft Linux Mandrake 2008.0 x86_64
  • MandrakeSoft Linux Mandrake 2008.1
  • MandrakeSoft Linux Mandrake 2008.1 x86_64
  • Mozilla Firefox 2.0
  • Mozilla Firefox 2.0 RC2
  • Mozilla Firefox 2.0 RC3
  • Mozilla Firefox 2.0 beta 1
  • Mozilla Firefox 2.0.0.1
  • Mozilla Firefox 2.0.0.10
  • Mozilla Firefox 2.0.0.10
  • Mozilla Firefox 2.0.0.10
  • Mozilla Firefox 2.0.0.11
  • Mozilla Firefox 2.0.0.12
  • Mozilla Firefox 2.0.0.13
  • Mozilla Firefox 2.0.0.14
  • Mozilla Firefox 2.0.0.15
  • Mozilla Firefox 2.0.0.16
  • Mozilla Firefox 2.0.0.2
  • Mozilla Firefox 2.0.0.3
  • Mozilla Firefox 2.0.0.3
  • Mozilla Firefox 2.0.0.4
  • Mozilla Firefox 2.0.0.5
  • Mozilla Firefox 2.0.0.6
  • Mozilla Firefox 2.0.0.7
  • Mozilla Firefox 2.0.0.8
  • Mozilla Firefox 2.0.0.9
  • Mozilla Firefox 3.0
  • Mozilla Firefox 3.0 Beta 5
  • Mozilla Firefox 3.0.1
  • Mozilla SeaMonkey 1.0
  • Mozilla SeaMonkey 1.0 dev
  • Mozilla SeaMonkey 1.0.1
  • Mozilla SeaMonkey 1.0.2
  • Mozilla SeaMonkey 1.0.3
  • Mozilla SeaMonkey 1.0.5
  • Mozilla SeaMonkey 1.0.6
  • Mozilla SeaMonkey 1.0.7
  • Mozilla SeaMonkey 1.0.8
  • Mozilla SeaMonkey 1.0.9
  • Mozilla SeaMonkey 1.0.99
  • Mozilla SeaMonkey 1.1 beta
  • Mozilla SeaMonkey 1.1.1
  • Mozilla SeaMonkey 1.1.10
  • Mozilla SeaMonkey 1.1.11
  • Mozilla SeaMonkey 1.1.2
  • Mozilla SeaMonkey 1.1.3
  • Mozilla SeaMonkey 1.1.4
  • Mozilla SeaMonkey 1.1.5
  • Mozilla SeaMonkey 1.1.6
  • Mozilla SeaMonkey 1.1.7
  • Mozilla SeaMonkey 1.1.8
  • Mozilla SeaMonkey 1.1.9
  • Mozilla Thunderbird 2.0.0.12
  • Mozilla Thunderbird 2.0.0.13
  • Mozilla Thunderbird 2.0.0.14
  • Mozilla Thunderbird 2.0.0.15
  • Mozilla Thunderbird 2.0.0.16
  • Mozilla Thunderbird 2.0.0.4
  • Mozilla Thunderbird 2.0.0.5
  • Mozilla Thunderbird 2.0.0.6
  • Mozilla Thunderbird 2.0.0.8
  • Mozilla Thunderbird 2.0.0.9
  • Nortel Networks Self-Service - CCSS7
  • Nortel Networks Self-Service MPS 1000
  • Nortel Networks Self-Service Peri Application
  • Nortel Networks Self-Service Peri Workstation
  • Pardus Linux 2007
  • Pardus Linux 2008
  • RedHat Advanced Workstation for the Itanium Processor 2.1.0
  • RedHat Desktop 3.0.0
  • RedHat Desktop 4.0.0
  • RedHat Enterprise Linux 5 server
  • RedHat Enterprise Linux AS 2.1
  • RedHat Enterprise Linux AS 3
  • RedHat Enterprise Linux AS 4
  • RedHat Enterprise Linux Desktop 5 client
  • RedHat Enterprise Linux Desktop Workstation 5 client
  • RedHat Enterprise Linux ES 2.1
  • RedHat Enterprise Linux ES 3
  • RedHat Enterprise Linux ES 4
  • RedHat Enterprise Linux WS 2.1
  • RedHat Enterprise Linux WS 3
  • RedHat Enterprise Linux WS 4
  • RedHat Fedora 8
  • RedHat Fedora 9
  • S.u.S.E. Linux Enterprise Server 9
  • S.u.S.E. Novell Linux Desktop 9
  • S.u.S.E. Novell Linux POS 9
  • S.u.S.E. Open-Enterprise-Server
  • S.u.S.E. SLE SDK 10 SP2
  • S.u.S.E. SLE SDK 10.SP1
  • S.u.S.E. SUSE Linux Enterprise 10 SP1 DEBUGINFO
  • S.u.S.E. SUSE Linux Enterprise 10 SP2 DEBUGINFO
  • S.u.S.E. SUSE Linux Enterprise Desktop 10 SP1
  • S.u.S.E. SUSE Linux Enterprise Desktop 10 SP2
  • S.u.S.E. SUSE Linux Enterprise Server 10 SP1
  • S.u.S.E. SUSE Linux Enterprise Server 10 SP2
  • S.u.S.E. openSUSE 10.2
  • S.u.S.E. openSUSE 10.3
  • S.u.S.E. openSUSE 11.0
  • Slackware Linux 10.2.0
  • Slackware Linux 11.0
  • Slackware Linux 12.0
  • Slackware Linux 12.1
  • Turbolinux Client 2008
  • Turbolinux FUJI
  • Turbolinux Turbolinux Server 11
  • Turbolinux Turbolinux Server 11 x64
  • Turbolinux wizpy
  • Ubuntu Ubuntu Linux 6.06 LTS amd64
  • Ubuntu Ubuntu Linux 6.06 LTS i386
  • Ubuntu Ubuntu Linux 6.06 LTS powerpc
  • Ubuntu Ubuntu Linux 6.06 LTS sparc
  • Ubuntu Ubuntu Linux 7.04 amd64
  • Ubuntu Ubuntu Linux 7.04 i386
  • Ubuntu Ubuntu Linux 7.04 powerpc
  • Ubuntu Ubuntu Linux 7.04 sparc
  • Ubuntu Ubuntu Linux 7.10 amd64
  • Ubuntu Ubuntu Linux 7.10 i386
  • Ubuntu Ubuntu Linux 7.10 lpia
  • Ubuntu Ubuntu Linux 7.10 powerpc
  • Ubuntu Ubuntu Linux 7.10 sparc
  • Ubuntu Ubuntu Linux 8.04 LTS amd64
  • Ubuntu Ubuntu Linux 8.04 LTS i386
  • Ubuntu Ubuntu Linux 8.04 LTS lpia
  • Ubuntu Ubuntu Linux 8.04 LTS powerpc
  • Ubuntu Ubuntu Linux 8.04 LTS sparc

References:

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.