HTTP: Mozilla Javascript Eval Escalation
This signature detects attempts to exploit a known vulnerability in JavaScript. Attackers can use JavaScript exploits to escalate their privileges.
Extended Description
Mozilla Suite and Mozilla Firefox are affected by a code-execution vulnerability. This issue is due to a failure in the application to properly verify Document Object Model (DOM) property values. An attacker may leverage this issue to execute arbitrary code with the privileges of the user that activated the vulnerable browser, ultimately facilitating a compromise of the affected computer. This issue is reportedly a variant of BID 13233. Further details are scheduled to be released in the future; this BID will be updated accordingly.
Affected Products
Mozilla browser
Short Name
HTTP:STC:MOZILLA:JS-EVAL
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2005-1532 Escalation Eval Javascript Mozilla bid:13645
Release Date
06/15/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Red_hat
Sco
Suse
Hp
Mozilla
Debian
Sgi
Ubuntu
Mandriva
Netscape
CVSS Score
7.5