OSVDB ID: 32108

Title: Mozilla Multiple Products Blocked Popup Arbitrary File Access

Info

Disclosure
Feb 05, 2007

Discovery
Unknown

Dates

Exploit
Feb 05, 2007

Solution
Unknown

Description

 Mozilla Firefox contains a flaw that may allow user-assisted remote attackers to obtain sensitive information. The issue is triggered when the victim visits a malicious web page and manually allows a blocked popup, which causes normal URL permission checks to be bypassed. This permits the attacker to bypass security zone restrictions and read arbitrary files on the system, resulting in a loss of confidentiality.

Classification

 Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Confidentiality
Exploit: Exploit Public
Disclosure: OSVDB Verified, Vendor Verified

Solution

 Upgrade to the following versions of the affected products as they have been reported to fix this vulnerability. Mozilla Firefox: version 1.5.0.10 or higher Mozilla Firefox 2: version 2.0.0.2 or higher An upgrade is required as there are no known workarounds.

Products

Mozilla Organization

Firefox

 0.8
0.9
0.9.1
0.9.2
0.9.3
0.10
0.10.1
1.0 RC1
1.0 RC2
1.0
1.0.1
1.0.2
1.0.3
1.0.4
1.0.5
1.0.6
1.0.7
1.0.8
1.1a1
1.1a2
1.4
1.4.1
1.5 RC1
1.5 rc2
1.5 RC3
1.5
1.5.0.1 RC1
1.5.0.1
1.5.0.2
1.5.0.3
1.5.0.4
1.5.0.5
1.5.0.6
1.5.0.7
1.5.0.8
1.5.0.9
1.5.0.10
1.5.0.11
2.0a1
2.0a2
2.0a3
2.0b1
2.0b2
2.0 RC 1
2.0 RC 2
2.0 RC 3
2.0
2.0.0.1
2.0.0.2
2.0.0.3

References

Credit
  • Michał Zalewski - lcamtufcoredump.cx - http://lcamtuf.coredump.cx/


Direct URL: http://osvdb.org/32108