• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: Mozilla Firebird Browser markLinkVisited Arbitrary Script Code Execution Vulnerability

Severity: HIGH

Description:

Mozilla Firebird Browser has been reported to be prone to an arbitrary code execution vulnerability that may allow an attacker to execute arbitrary script code with chrome privileges in a user's browser.

Mozilla allows files to be installed with chrome privileges. These privileges allow applications to perform any operation without security restrictions. Applications can be installed as chrome by manually editing the file 'installed-chrome.txt' in the 'chrome' directory. Applications may be installed as chrome by creating an XPI installer as well.

A vulnerability has been reported to exist in Mozilla Firebird that may allow an attacker to gain chrome privileges on a vulnerable system. The issue is reported to exist in the markLinkVisited function. It has been reported that an attacker may exploit this issue by setting the href setter of the linknode property to 'eval' in a link and sending this link to a vulnerable user. If the victim follows the malicious link the attacker may be able to gain chrome privileges on a vulnerable system and execute arbitrary code.

Successful exploitation of this issue may allow an attacker gain chrome privileges and execute arbitrary script code on a vulnerable system in the context of the user.

Affected Products:

• Conectiva Linux 6.0.0
• Conectiva Linux 7.0.0
• Conectiva Linux 8.0.0
• MandrakeSoft Linux Mandrake 8.0.0
• MandrakeSoft Linux Mandrake 8.0.0 ppc
• MandrakeSoft Linux Mandrake 8.2.0
• MandrakeSoft Linux Mandrake 8.2.0 ppc
• MandrakeSoft Linux Mandrake 9.2.0
• MandrakeSoft Linux Mandrake 9.2.0 amd64
• Mozilla Browser 0.0.0M15
• Mozilla Browser 0.0.0M16
• Mozilla Browser 0.8.0
• Mozilla Browser 0.9.2
• Mozilla Browser 0.9.2.1
• Mozilla Browser 0.9.3
• Mozilla Browser 0.9.35
• Mozilla Browser 0.9.4
• Mozilla Browser 0.9.4.1
• Mozilla Browser 0.9.48
• Mozilla Browser 0.9.5
• Mozilla Browser 0.9.6
• Mozilla Browser 0.9.7
• Mozilla Browser 0.9.8
• Mozilla Browser 0.9.9
• Mozilla Browser 1.0.0
• Mozilla Browser 1.0.0RC1
• Mozilla Browser 1.0.0RC2
• Mozilla Browser 1.0.1
• Mozilla Browser 1.0.2
• Mozilla Browser 1.1.0
• Mozilla Browser 1.1.0Alpha
• Mozilla Browser 1.1.0Beta
• Mozilla Browser 1.2.0
• Mozilla Browser 1.2.0Alpha
• Mozilla Browser 1.2.0Beta
• Mozilla Browser 1.2.1
• Mozilla Browser 1.3.0
• Mozilla Browser 1.3.1
• Mozilla Browser 1.4.0
• Mozilla Browser 1.4.0a
• Mozilla Browser 1.4.0b
• Mozilla Firebird 0.5.0
• Mozilla Firebird 0.6.1
• RedHat Advanced Workstation for the Itanium Processor 2.1.0
• RedHat Enterprise Linux AS 2.1
• RedHat Enterprise Linux AS 2.1 IA64
• RedHat Enterprise Linux ES 2.1
• RedHat Enterprise Linux ES 2.1 IA64
• RedHat Enterprise Linux WS 2.1
• RedHat Enterprise Linux WS 2.1 IA64
• RedHat Linux 7.2.0
• RedHat Linux 7.2.0 i386
• RedHat Linux 7.2.0 i586
• RedHat Linux 7.2.0 i686
• RedHat Linux 7.3.0
• RedHat Linux 7.3.0 i386
• RedHat Linux 8.0.0
• RedHat Linux 8.0.0 i386
• Sun Linux 5.0.7

References:

• Mozilla: Known Vulnerabilities in Mozilla
• Mozilla Foundation: Mozilla Homepage

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.