HTTP: Firefox and Navigator URI Command Injection
This signature detects attempts to exploit a known vulnerability against Firefox, Navigator, and Internet Explorer. Attackers can inject code on the target system resulting in full control of the victim's computer.
Extended Description
Microsoft Internet Explorer, Mozilla Firefox and Netscape Navigator are prone to a vulnerability that lets attackers inject commands through the 'firefoxurl' and 'navigatorurl' protocol handlers. Exploiting these issues allows remote attackers to pass and execute arbitrary commands and arguments through the 'firefox.exe' and 'navigator.exe' processes by employing the 'firefoxurl' and 'navigatorurl' handlers. An attacker can also employ these issues to carry out cross-browser scripting attacks by using the '-chrome' argument. This can allow the attacker to run JavaScript code with the privileges of trusted Chrome context and gain full access to Firefox and Netscape Navigator's resources. Exploiting these issues would permit remote attackers to influence command options that can be called through the 'firefoxurl' and 'navigatorurl' handlers and therefore execute commands and script code with the privileges of a user running the applications. Successful attacks may result in a variety of consequences, including remote unauthorized access.
Affected Products
Mozilla camino
References
BugTraq: 24837
CVE: CVE-2007-3670
URL: http://securitytracker.com/alerts/2007/Jul/1018351.html
Short Name
HTTP:STC:FF-NAV-URI
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2007-3670 Command Firefox Injection Navigator URI and bid:24837
Release Date
10/30/2007
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Suse
Mozilla
Microsoft
Slackware
Ubuntu
Mandriva
Netscape
CVSS Score
4.3