ID CVE-2007-3736
Summary Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 2.0.0.5 allows remote attackers to inject arbitrary web script "into another site's context" via a "timing issue" involving the (1) addEventListener or (2) setTimeout function, probably by setting events that activate after the context has changed.
References
Vulnerable Configurations
  • Mozilla Firefox 2.0
    cpe:2.3:a:mozilla:firefox:2.0
  • Mozilla Firefox 2.0.0.1
    cpe:2.3:a:mozilla:firefox:2.0.0.1
  • Mozilla Firefox 2.0.0.2
    cpe:2.3:a:mozilla:firefox:2.0.0.2
  • Mozilla Firefox 2.0.0.3
    cpe:2.3:a:mozilla:firefox:2.0.0.3
  • Mozilla Firefox 2.0.0.4
    cpe:2.3:a:mozilla:firefox:2.0.0.4
CVSS
Base: 4.3 (as of 19-07-2007 - 07:50)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
nessus via4
  • NASL family Mandriva Local Security Checks
    NASL id MANDRAKE_MDKSA-2007-152.NASL
    description A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 2.0.0.6. This update provides the latest Firefox to correct these issues. As well, it provides Firefox 2.0.0.6 for older products.
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 25836
    published 2007-08-02
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25836
    title Mandrake Linux Security Advisory : mozilla-firefox (MDKSA-2007:152)
  • NASL family Oracle Linux Local Security Checks
    NASL id ORACLELINUX_ELSA-2007-0723.NASL
    description From Red Hat Security Advisory 2007:0723 : Updated thunderbird packages that fix several security bugs are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the way Thunderbird processed certain malformed JavaScript code. A malicious HTML email message containing JavaScript code could cause Thunderbird to crash or potentially execute arbitrary code as the user running Thunderbird. JavaScript support is disabled by default in Thunderbird; these issues are not exploitable unless the user has enabled JavaScript. (CVE-2007-3089, CVE-2007-3734, CVE-2007-3735, CVE-2007-3736, CVE-2007-3737, CVE-2007-3738) Users of Thunderbird are advised to upgrade to these erratum packages, which contain backported patches that correct these issues.
    last seen 2019-02-21
    modified 2018-07-18
    plugin id 67547
    published 2013-07-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=67547
    title Oracle Linux 4 : thunderbird (ELSA-2007-0723)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_SEAMONKEY-3986.NASL
    description This update fixes several security issues in Mozilla SeaMonkey 1.0.9. Following security problems were fixed : - MFSA 2007-18: Crashes with evidence of memory corruption The usual collection of stability fixes for crashes that look suspicious but haven't been proven to be exploitable. 25 were in the browser engine, reported by Mozilla developers and community members Bernd Mielke, Boris Zbarsky, David Baron, Daniel Veditz, Jesse Ruderman, Lukas Loehrer, Martijn Wargers, Mats Palmgren, Olli Pettay, Paul Nickerson,and Vladimir Sukhoy (CVE-2007-3734) 7 were in the JavaScript engine reported by Asaf Romano, Jesse Ruderman, Igor Bukanov (CVE-2007-3735) - MFSA 2007-19 / CVE-2007-3736: XSS using addEventListener and setTimeout moz_bug_r_a4 reported that scripts could be injected into another site's context by exploiting a timing issue using addEventLstener or setTimeout. - MFSA 2007-20 / CVE-2007-3089: frame spoofing Ronen Zilberman and Michal Zalewski both reported that it was possible to exploit a timing issue to inject content into about:blank frames in a page. - MFSA 2007-21 / CVE-2007-3737: Privilege escalation using an event handler attached to an element not in the document Reported by moz_bug_r_a4. - MFSA 2007-22 / CVE-2007-3285: File type confusion due to %00 in name Ronald van den Heetkamp reported that a filename URL containing %00 (encoded null) can cause Firefox to interpret the file extension differently than the underlying Windows operating system potentially leading to unsafe actions such as running a program. - MFSA 2007-23 / CVE-2007-3670: Remote code execution by launching Firefox from Internet Explorer Greg MacManus of iDefense and Billy Rios of Verisign independently reported that links containing a quote (') character could be used in Internet Explorer to launch registered URL Protocol handlers with extra command-line parameters. Firefox and Thunderbird are among those which can be launched, and both support a '-chrome' option that could be used to run malware. This problem does not affect Linux. - MFSA 2007-24 / CVE-2007-3656: unauthorized access to wyciwyg:// documents Michal Zalewski reported that it was possible to bypass the same-origin checks and read from cached (wyciwyg) documents - MFSA 2007-25 / CVE-2007-3738: XPCNativeWrapper pollution shutdown and moz_bug_r_a4 reported two separate ways to modify an XPCNativeWrapper such that subsequent access by the browser would result in executing user-supplied code.
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 27444
    published 2007-10-17
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27444
    title openSUSE 10 Security Update : seamonkey (seamonkey-3986)
  • NASL family Scientific Linux Local Security Checks
    NASL id SL_20070718_SEAMONKEY_ON_SL4_X.NASL
    description Several flaws were found in the way SeaMonkey processed certain malformed JavaScript code. A web page containing malicious JavaScript code could cause SeaMonkey to crash or potentially execute arbitrary code as the user running SeaMonkey. (CVE-2007-3734, CVE-2007-3735, CVE-2007-3737, CVE-2007-3738) Several content injection flaws were found in the way SeaMonkey handled certain JavaScript code. A web page containing malicious JavaScript code could inject arbitrary content into other web pages. (CVE-2007-3736, CVE-2007-3089) A flaw was found in the way SeaMonkey cached web pages on the local disk. A malicious web page may be able to inject arbitrary HTML into a browsingsession if the user reloads a targeted site. (CVE-2007-3656)
    last seen 2019-02-21
    modified 2019-01-07
    plugin id 60229
    published 2012-08-01
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=60229
    title Scientific Linux Security Update : seamonkey on SL4.x, SL3.x i386/x86_64
  • NASL family CentOS Local Security Checks
    NASL id CENTOS_RHSA-2007-0723.NASL
    description Updated thunderbird packages that fix several security bugs are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the way Thunderbird processed certain malformed JavaScript code. A malicious HTML email message containing JavaScript code could cause Thunderbird to crash or potentially execute arbitrary code as the user running Thunderbird. JavaScript support is disabled by default in Thunderbird; these issues are not exploitable unless the user has enabled JavaScript. (CVE-2007-3089, CVE-2007-3734, CVE-2007-3735, CVE-2007-3736, CVE-2007-3737, CVE-2007-3738) Users of Thunderbird are advised to upgrade to these erratum packages, which contain backported patches that correct these issues.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 25740
    published 2007-07-23
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25740
    title CentOS 4 / 5 : thunderbird (CESA-2007:0723)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2007-1144.NASL
    description Updated firefox packages that fix several security bugs are now available for Fedora Core 7. Users of yelp are advised to upgrade to these erratum packages, which contain an update to yelp built against the updated Firefox packages. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-21
    plugin id 27695
    published 2007-11-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27695
    title Fedora 7 : yelp-2.18.1-5.fc7 (2007-1144)
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-1338.NASL
    description Several remote vulnerabilities have been discovered in the Iceweasel web browser, an unbranded version of the Firefox browser. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-3089 Ronen Zilberman and Michal Zalewski discovered that a timing race allows the injection of content into about:blank frames. - CVE-2007-3656 Michal Zalewski discovered that same-origin policies for wyciwyg:// documents are insufficiently enforced. - CVE-2007-3734 Bernd Mielke, Boris Zbarsky, David Baron, Daniel Veditz, Jesse Ruderman, Lukas Loehrer, Martijn Wargers, Mats Palmgren, Olli Pettay, Paul Nickerson and Vladimir Sukhoy discovered crashes in the layout engine, which might allow the execution of arbitrary code. - CVE-2007-3735 Asaf Romano, Jesse Ruderman and Igor Bukanov discovered crashes in the JavaScript engine, which might allow the execution of arbitrary code. - CVE-2007-3736 'moz_bug_r_a4' discovered that the addEventListener() and setTimeout() functions allow cross-site scripting. - CVE-2007-3737 'moz_bug_r_a4' discovered that a programming error in event handling allows privilege escalation. - CVE-2007-3738 'shutdown' and 'moz_bug_r_a4' discovered that the XPCNativeWrapper allows the execution of arbitrary code. The Mozilla products in the oldstable distribution (sarge) are no longer supported with security updates. You're strongly encouraged to upgrade to stable as soon as possible.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 25781
    published 2007-07-27
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25781
    title Debian DSA-1338-1 : iceweasel - several vulnerabilities
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2007-1181.NASL
    description SeaMonkey is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor. Several flaws were found in the way SeaMonkey processed certain malformed JavaScript code. A web page containing malicious JavaScript code could cause SeaMonkey to crash or potentially execute arbitrary code as the user running SeaMonkey. (CVE-2007-3734, CVE-2007-3735, CVE-2007-3737, CVE-2007-3738) Several content injection flaws were found in the way SeaMonkey handled certain JavaScript code. A web page containing malicious JavaScript code could inject arbitrary content into other web pages. (CVE-2007-3736, CVE-2007-3089) A flaw was found in the way SeaMonkey cached web pages on the local disk. A malicious web page may be able to inject arbitrary HTML into a browsing session if the user reloads a targeted site. (CVE-2007-3656) Users of SeaMonkey are advised to upgrade to these erratum packages, which contain patches that correct these issues. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-21
    plugin id 27706
    published 2007-11-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27706
    title Fedora 7 : seamonkey-1.1.3-1.fc7 (2007-1181)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_MOZILLAFIREFOX-3932.NASL
    description This update brings Mozilla Firefox to security update version 2.0.0.5 Following security problems were fixed : - Crashes with evidence of memory corruption The usual collection of stability fixes for crashes that look suspicious but haven't been proven to be exploitable. (MFSA 2007-18) 25 were in the browser engine, reported by Mozilla developers and community members Bernd Mielke, Boris Zbarsky, David Baron, Daniel Veditz, Jesse Ruderman, Lukas Loehrer, Martijn Wargers, Mats Palmgren, Olli Pettay, Paul Nickerson,and Vladimir Sukhoy. (CVE-2007-3734) 7 were in the JavaScript engine reported by Asaf Romano, Jesse Ruderman, Igor Bukanov. (CVE-2007-3735) - XSS using addEventListener and setTimeout. (MFSA 2007-19 / CVE-2007-3736) moz_bug_r_a4 reported that scripts could be injected into another site's context by exploiting a timing issue using addEventLstener or setTimeout. - frame spoofing Ronen Zilberman and Michal Zalewski both reported that it was possible to exploit a timing issue to inject content into about:blank frames in a page. (MFSA 2007-20 / CVE-2007-3089) - Privilege escallation using an event handler attached to an element not in the document. (MFSA 2007-21 / CVE-2007-3737) Reported by moz_bug_r_a4. - File type confusion due to %00 in name. (MFSA 2007-22 / CVE-2007-3285) Ronald van den Heetkamp reported that a filename URL containing %00 (encoded null) can cause Firefox to interpret the file extension differently than the underlying Windows operating system potentially leading to unsafe actions such as running a program. - Remote code execution by launching Firefox from Internet Explorer. (MFSA 2007-23 / CVE-2007-3670) Greg MacManus of iDefense and Billy Rios of Verisign independently reported that links containing a quote (') character could be used in Internet Explorer to launch registered URL Protocol handlers with extra command-line parameters. Firefox and Thunderbird are among those which can be launched, and both support a '-chrome' option that could be used to run malware. This problem does not affect Linux. - unauthorized access to wyciwyg:// documents. (MFSA 2007-24 / CVE-2007-3656) Michal Zalewski reported that it was possible to bypass the same-origin checks and read from cached (wyciwyg) documents - XPCNativeWrapper pollution shutdown and moz_bug_r_a4 reported two separate ways to modify an XPCNativeWrapper such that subsequent access by the browser would result in executing user-supplied code. (MFSA 2007-25 / CVE-2007-3738)
    last seen 2019-02-21
    modified 2016-12-22
    plugin id 29361
    published 2007-12-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=29361
    title SuSE 10 Security Update : MozillaFirefox (ZYPP Patch Number 3932)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2007-1142.NASL
    description Mozilla Firefox is an open source web browser, designed for standards compliance, performance and portability. Several flaws were found in the way Firefox processed certain malformed JavaScript code. A web page containing malicious JavaScript code could cause Firefox to crash or potentially execute arbitrary code as the user running Firefox. (CVE-2007-3734, CVE-2007-3735) Several flaws were found in the way Firefox handles certain JavaScript code. A web page containing malicious JavaScript code could inject arbitrary content into other web pages. (CVE-2007-3736, CVE-2007-3089) A flaw was found in the way Firefox cached web pages on the local disk. A malicious web page may be able to inject arbitrary HTML into a browsing session if the user reloads a targeted site. (CVE-2007-3656) A flaw was found in the way Firefox processes certain web content. A web page containing malicious content could execute arbitrary commands as the user running Firefox. (CVE-2007-3737, CVE-2007-3738) Users of Firefox are advised to upgrade to these erratum packages, which contain patches that correct these issues. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-21
    plugin id 27693
    published 2007-11-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27693
    title Fedora 7 : firefox-2.0.0.5-1.fc7 (2007-1142)
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-1339.NASL
    description Several remote vulnerabilities have been discovered in the Iceape internet suite, an unbranded version of the SeaMonkey Internet Suite. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-3089 Ronen Zilberman and Michal Zalewski discovered that a timing race allows the injection of content into about:blank frames. - CVE-2007-3656 Michal Zalewski discovered that same-origin policies for wyciwyg:// documents are insufficiently enforced. - CVE-2007-3734 Bernd Mielke, Boris Zbarsky, David Baron, Daniel Veditz, Jesse Ruderman, Lukas Loehrer, Martijn Wargers, Mats Palmgren, Olli Pettay, Paul Nickerson and Vladimir Sukhoy discovered crashes in the layout engine, which might allow the execution of arbitrary code. - CVE-2007-3735 Asaf Romano, Jesse Ruderman and Igor Bukanov discovered crashes in the JavaScript engine, which might allow the execution of arbitrary code. - CVE-2007-3736 'moz_bug_r_a4' discovered that the addEventListener() and setTimeout() functions allow cross-site scripting. - CVE-2007-3737 'moz_bug_r_a4' discovered that a programming error in event handling allows privilege escalation. - CVE-2007-3738 'shutdown' and 'moz_bug_r_a4' discovered that the XPCNativeWrapper allows the execution of arbitrary code. The Mozilla products in the oldstable distribution (sarge) are no longer supported with security updates. You're strongly encouraged to upgrade to stable as soon as possible.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 25801
    published 2007-07-30
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25801
    title Debian DSA-1339-1 : iceape - several vulnerabilities
  • NASL family Ubuntu Local Security Checks
    NASL id UBUNTU_USN-490-1.NASL
    description Various flaws were discovered in the layout and JavaScript engines. By tricking a user into opening a malicious web page, an attacker could execute arbitrary code with the user's privileges. (CVE-2007-3734, CVE-2007-3735) Flaws were discovered in the JavaScript methods addEventListener and setTimeout which could be used to inject script into another site in violation of the browser's same-origin policy. A malicious website could exploit this to modify the contents, or steal confidential data (such as passwords), of other web pages. (CVE-2007-3736) Ronen Zilberman and Michal Zalewski discovered timing attacks in the JavaScript engine's use of about:blank frames. A malicious website could exploit this to modify the contents, or steal confidential data (such as passwords), of other web pages. (CVE-2007-3089) A flaw was discovered in the JavaScript event handling code. By tricking a user into opening a malicious web page, an attacker could execute arbitrary code with the user's privileges. (CVE-2007-3737) Ronald van den Heetkamp discovered that filename URLs including an encoded null byte could confuse the extension matching code. By tricking a user into opening a malicious web page, an attacker could execute arbitrary helper programs. (CVE-2007-3285) Michal Zalewski discovered flaws in the same-origin handling of cached 'wyciwyg://' documents. A malicious website could exploit this to modify the contents, or steal confidential data (such as passwords), of other web pages. (CVE-2007-3656) Various flaws were discovered in the XPCNativeWrapper method. By tricking a user into opening a malicious web page, an attacker could execute arbitrary code with the user's privileges. (CVE-2007-3738). Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-11-28
    plugin id 28092
    published 2007-11-10
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=28092
    title Ubuntu 6.06 LTS / 6.10 / 7.04 : firefox vulnerabilities (USN-490-1)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2007-1180.NASL
    description Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the way Thunderbird processed certain malformed JavaScript code. A malicious HTML email message containing JavaScript code could cause Thunderbird to crash or potentially execute arbitrary code as the user running Thunderbird. JavaScript support is disabled by default in Thunderbird; these issues are not exploitable unless the user has enabled JavaScript. (CVE-2007-3089, CVE-2007-3734, CVE-2007-3735, CVE-2007-3736, CVE-2007-3737, CVE-2007-3738) Users of Thunderbird are advised to upgrade to these erratum packages, which contain patches that correct these issues. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-21
    plugin id 27705
    published 2007-11-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27705
    title Fedora 7 : thunderbird-2.0.0.5-1.fc7 (2007-1180)
  • NASL family Red Hat Local Security Checks
    NASL id REDHAT-RHSA-2007-0723.NASL
    description Updated thunderbird packages that fix several security bugs are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the way Thunderbird processed certain malformed JavaScript code. A malicious HTML email message containing JavaScript code could cause Thunderbird to crash or potentially execute arbitrary code as the user running Thunderbird. JavaScript support is disabled by default in Thunderbird; these issues are not exploitable unless the user has enabled JavaScript. (CVE-2007-3089, CVE-2007-3734, CVE-2007-3735, CVE-2007-3736, CVE-2007-3737, CVE-2007-3738) Users of Thunderbird are advised to upgrade to these erratum packages, which contain backported patches that correct these issues.
    last seen 2019-02-21
    modified 2018-11-16
    plugin id 25752
    published 2007-07-23
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25752
    title RHEL 4 / 5 : thunderbird (RHSA-2007:0723)
  • NASL family Oracle Linux Local Security Checks
    NASL id ORACLELINUX_ELSA-2007-0724.NASL
    description From Red Hat Security Advisory 2007:0724 : Updated firefox packages that fix several security bugs are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla Firefox is an open source Web browser. Several flaws were found in the way Firefox processed certain malformed JavaScript code. A web page containing malicious JavaScript code could cause Firefox to crash or potentially execute arbitrary code as the user running Firefox. (CVE-2007-3734, CVE-2007-3735, CVE-2007-3737, CVE-2007-3738) Several content injection flaws were found in the way Firefox handled certain JavaScript code. A web page containing malicious JavaScript code could inject arbitrary content into other web pages. (CVE-2007-3736, CVE-2007-3089) A flaw was found in the way Firefox cached web pages on the local disk. A malicious web page may be able to inject arbitrary HTML into a browsing session if the user reloads a targeted site. (CVE-2007-3656) Users of Firefox are advised to upgrade to these erratum packages, which contain backported patches that correct these issues.
    last seen 2019-02-21
    modified 2018-07-18
    plugin id 67548
    published 2013-07-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=67548
    title Oracle Linux 4 / 5 : firefox (ELSA-2007-0724)
  • NASL family Scientific Linux Local Security Checks
    NASL id SL_20070718_FIREFOX_ON_SL5_X.NASL
    description Several flaws were found in the way Firefox processed certain malformed JavaScript code. A web page containing malicious JavaScript code could cause Firefox to crash or potentially execute arbitrary code as the user running Firefox. (CVE-2007-3734, CVE-2007-3735, CVE-2007-3737, CVE-2007-3738) Several content injection flaws were found in the way Firefox handled certain JavaScript code. A web page containing malicious JavaScript code could inject arbitrary content into other web pages. (CVE-2007-3736, CVE-2007-3089) A flaw was found in the way Firefox cached web pages on the local disk. A malicious web page may be able to inject arbitrary HTML into a browsing session if the user reloads a targeted site. (CVE-2007-3656)
    last seen 2019-02-21
    modified 2019-01-07
    plugin id 60228
    published 2012-08-01
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=60228
    title Scientific Linux Security Update : firefox on SL5.x, SL4.x, SL3.x i386/x86_64
  • NASL family Red Hat Local Security Checks
    NASL id REDHAT-RHSA-2007-0724.NASL
    description Updated firefox packages that fix several security bugs are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla Firefox is an open source Web browser. Several flaws were found in the way Firefox processed certain malformed JavaScript code. A web page containing malicious JavaScript code could cause Firefox to crash or potentially execute arbitrary code as the user running Firefox. (CVE-2007-3734, CVE-2007-3735, CVE-2007-3737, CVE-2007-3738) Several content injection flaws were found in the way Firefox handled certain JavaScript code. A web page containing malicious JavaScript code could inject arbitrary content into other web pages. (CVE-2007-3736, CVE-2007-3089) A flaw was found in the way Firefox cached web pages on the local disk. A malicious web page may be able to inject arbitrary HTML into a browsing session if the user reloads a targeted site. (CVE-2007-3656) Users of Firefox are advised to upgrade to these erratum packages, which contain backported patches that correct these issues.
    last seen 2019-02-21
    modified 2018-11-16
    plugin id 25753
    published 2007-07-23
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25753
    title RHEL 4 / 5 : firefox (RHSA-2007:0724)
  • NASL family CentOS Local Security Checks
    NASL id CENTOS_RHSA-2007-0722.NASL
    description Updated SeaMonkey packages that fix several security bugs are now available for Red Hat Enterprise Linux 2.1, 3, and 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. SeaMonkey is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor. Several flaws were found in the way SeaMonkey processed certain malformed JavaScript code. A web page containing malicious JavaScript code could cause SeaMonkey to crash or potentially execute arbitrary code as the user running SeaMonkey. (CVE-2007-3734, CVE-2007-3735, CVE-2007-3737, CVE-2007-3738) Several content injection flaws were found in the way SeaMonkey handled certain JavaScript code. A web page containing malicious JavaScript code could inject arbitrary content into other web pages. (CVE-2007-3736, CVE-2007-3089) A flaw was found in the way SeaMonkey cached web pages on the local disk. A malicious web page may be able to inject arbitrary HTML into a browsing session if the user reloads a targeted site. (CVE-2007-3656) Users of SeaMonkey are advised to upgrade to these erratum packages, which contain backported patches that correct these issues.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 25739
    published 2007-07-23
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25739
    title CentOS 3 / 4 : seamonkey (CESA-2007:0722)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_MOZILLATHUNDERBIRD-3973.NASL
    description This update fixes several security problems in Mozilla Thunderbird 1.5.0.12. Following security problems were fixed : - MFSA 2007-18: Crashes with evidence of memory corruption The usual collection of stability fixes for crashes that look suspicious but haven't been proven to be exploitable. 25 were in the browser engine, reported by Mozilla developers and community members Bernd Mielke, Boris Zbarsky, David Baron, Daniel Veditz, Jesse Ruderman, Lukas Loehrer, Martijn Wargers, Mats Palmgren, Olli Pettay, Paul Nickerson,and Vladimir Sukhoy (CVE-2007-3734) 7 were in the JavaScript engine reported by Asaf Romano, Jesse Ruderman, Igor Bukanov (CVE-2007-3735) - MFSA 2007-19 / CVE-2007-3736: XSS using addEventListener and setTimeout moz_bug_r_a4 reported that scripts could be injected into another site's context by exploiting a timing issue using addEventLstener or setTimeout. - MFSA 2007-20 / CVE-2007-3089: frame spoofing Ronen Zilberman and Michal Zalewski both reported that it was possible to exploit a timing issue to inject content into about:blank frames in a page. - MFSA 2007-21 / CVE-2007-3737: Privilege escalation using an event handler attached to an element not in the document Reported by moz_bug_r_a4. - MFSA 2007-22 / CVE-2007-3285: File type confusion due to %00 in name Ronald van den Heetkamp reported that a filename URL containing %00 (encoded null) can cause Firefox to interpret the file extension differently than the underlying Windows operating system potentially leading to unsafe actions such as running a program. - MFSA 2007-23 / CVE-2007-3670: Remote code execution by launching Firefox from Internet Explorer Greg MacManus of iDefense and Billy Rios of Verisign independently reported that links containing a quote (') character could be used in Internet Explorer to launch registered URL Protocol handlers with extra command-line parameters. Firefox and Thunderbird are among those which can be launched, and both support a '-chrome' option that could be used to run malware. This problem does not affect Linux. - MFSA 2007-24 / CVE-2007-3656: unauthorized access to wyciwyg:// documents Michal Zalewski reported that it was possible to bypass the same-origin checks and read from cached (wyciwyg) documents - MFSA 2007-25 / CVE-2007-3738: XPCNativeWrapper pollution shutdown and moz_bug_r_a4 reported two separate ways to modify an XPCNativeWrapper such that subsequent access by the browser would result in executing user-supplied code.
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 27132
    published 2007-10-17
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27132
    title openSUSE 10 Security Update : MozillaThunderbird (MozillaThunderbird-3973)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_MOZILLAFIREFOX-3933.NASL
    description This update brings Mozilla Firefox to security update version 2.0.0.5 Following security problems were fixed : - MFSA 2007-18: Crashes with evidence of memory corruption The usual collection of stability fixes for crashes that look suspicious but haven't been proven to be exploitable. 25 were in the browser engine, reported by Mozilla developers and community members Bernd Mielke, Boris Zbarsky, David Baron, Daniel Veditz, Jesse Ruderman, Lukas Loehrer, Martijn Wargers, Mats Palmgren, Olli Pettay, Paul Nickerson,and Vladimir Sukhoy (CVE-2007-3734) 7 were in the JavaScript engine reported by Asaf Romano, Jesse Ruderman, Igor Bukanov (CVE-2007-3735) - MFSA 2007-19 / CVE-2007-3736: XSS using addEventListener and setTimeout moz_bug_r_a4 reported that scripts could be injected into another site's context by exploiting a timing issue using addEventLstener or setTimeout. - MFSA 2007-20 / CVE-2007-3089: frame spoofing Ronen Zilberman and Michal Zalewski both reported that it was possible to exploit a timing issue to inject content into about:blank frames in a page. - MFSA 2007-21 / CVE-2007-3737: Privilege escalation using an event handler attached to an element not in the document Reported by moz_bug_r_a4. - MFSA 2007-22 / CVE-2007-3285: File type confusion due to %00 in name Ronald van den Heetkamp reported that a filename URL containing %00 (encoded null) can cause Firefox to interpret the file extension differently than the underlying Windows operating system potentially leading to unsafe actions such as running a program. - MFSA 2007-23 / CVE-2007-3670: Remote code execution by launching Firefox from Internet Explorer Greg MacManus of iDefense and Billy Rios of Verisign independently reported that links containing a quote (') character could be used in Internet Explorer to launch registered URL Protocol handlers with extra command-line parameters. Firefox and Thunderbird are among those which can be launched, and both support a '-chrome' option that could be used to run malware. This problem does not affect Linux. - MFSA 2007-24 / CVE-2007-3656: unauthorized access to wyciwyg:// documents Michal Zalewski reported that it was possible to bypass the same-origin checks and read from cached (wyciwyg) documents - MFSA 2007-25 / CVE-2007-3738: XPCNativeWrapper pollution shutdown and moz_bug_r_a4 reported two separate ways to modify an XPCNativeWrapper such that subsequent access by the browser would result in executing user-supplied code.
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 27122
    published 2007-10-17
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27122
    title openSUSE 10 Security Update : MozillaFirefox (MozillaFirefox-3933)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2007-1155.NASL
    description Updated Firefox packages that fix several security bugs are now available for Fedora 7. Users of epiphany-extensions are advised to upgrade to this errata package, which has been rebuilt against the updated Firefox package. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-21
    plugin id 27700
    published 2007-11-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27700
    title Fedora 7 : epiphany-extensions-2.18.3-2 (2007-1155)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_SEAMONKEY-3984.NASL
    description This update fixes several security issues in Mozilla SeaMonkey 1.1.3. Following security problems were fixed : - MFSA 2007-18: Crashes with evidence of memory corruption The usual collection of stability fixes for crashes that look suspicious but haven't been proven to be exploitable. 25 were in the browser engine, reported by Mozilla developers and community members Bernd Mielke, Boris Zbarsky, David Baron, Daniel Veditz, Jesse Ruderman, Lukas Loehrer, Martijn Wargers, Mats Palmgren, Olli Pettay, Paul Nickerson,and Vladimir Sukhoy (CVE-2007-3734) 7 were in the JavaScript engine reported by Asaf Romano, Jesse Ruderman, Igor Bukanov (CVE-2007-3735) - MFSA 2007-19 / CVE-2007-3736: XSS using addEventListener and setTimeout moz_bug_r_a4 reported that scripts could be injected into another site's context by exploiting a timing issue using addEventLstener or setTimeout. - MFSA 2007-20 / CVE-2007-3089: frame spoofing Ronen Zilberman and Michal Zalewski both reported that it was possible to exploit a timing issue to inject content into about:blank frames in a page. - MFSA 2007-21 / CVE-2007-3737: Privilege escalation using an event handler attached to an element not in the document Reported by moz_bug_r_a4. - MFSA 2007-22 / CVE-2007-3285: File type confusion due to %00 in name Ronald van den Heetkamp reported that a filename URL containing %00 (encoded null) can cause Firefox to interpret the file extension differently than the underlying Windows operating system potentially leading to unsafe actions such as running a program. - MFSA 2007-23 / CVE-2007-3670: Remote code execution by launching Firefox from Internet Explorer Greg MacManus of iDefense and Billy Rios of Verisign independently reported that links containing a quote (') character could be used in Internet Explorer to launch registered URL Protocol handlers with extra command-line parameters. Firefox and Thunderbird are among those which can be launched, and both support a '-chrome' option that could be used to run malware. This problem does not affect Linux. - MFSA 2007-24 / CVE-2007-3656: unauthorized access to wyciwyg:// documents Michal Zalewski reported that it was possible to bypass the same-origin checks and read from cached (wyciwyg) documents - MFSA 2007-25 / CVE-2007-3738: XPCNativeWrapper pollution shutdown and moz_bug_r_a4 reported two separate ways to modify an XPCNativeWrapper such that subsequent access by the browser would result in executing user-supplied code.
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 27443
    published 2007-10-17
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27443
    title openSUSE 10 Security Update : seamonkey (seamonkey-3984)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2007-1143.NASL
    description Updated firefox packages that fix several security bugs are now available for Fedora Core 7. Users of devhelp are advised to upgrade to these erratum packages, which contain an update to devhelp built against the updated Firefox packages. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-21
    plugin id 27694
    published 2007-11-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27694
    title Fedora 7 : devhelp-0.13-9.fc7 (2007-1143)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2007-1138.NASL
    description Updated firefox packages that fix several security bugs are now available for Fedora Core 7. Users of epiphany are advised to upgrade to these erratum packages, which contain an update to epiphany built against the updated Firefox packages. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-21
    plugin id 27692
    published 2007-11-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27692
    title Fedora 7 : epiphany-2.18.3-2.fc7 (2007-1138)
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-1337.NASL
    description Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-3089 Ronen Zilberman and Michal Zalewski discovered that a timing race allows the injection of content into about:blank frames. - CVE-2007-3656 Michal Zalewski discovered that same-origin policies for wyciwyg:// documents are insufficiently enforced. - CVE-2007-3734 Bernd Mielke, Boris Zbarsky, David Baron, Daniel Veditz, Jesse Ruderman, Lukas Loehrer, Martijn Wargers, Mats Palmgren, Olli Pettay, Paul Nickerson and Vladimir Sukhoy discovered crashes in the layout engine, which might allow the execution of arbitrary code. - CVE-2007-3735 Asaf Romano, Jesse Ruderman and Igor Bukanov discovered crashes in the JavaScript engine, which might allow the execution of arbitrary code. - CVE-2007-3736 'moz_bug_r_a4' discovered that the addEventListener() and setTimeout() functions allow cross-site scripting. - CVE-2007-3737 'moz_bug_r_a4' discovered that a programming error in event handling allows privilege escalation. - CVE-2007-3738 'shutdown' and 'moz_bug_r_a4' discovered that the XPCNativeWrapper allows the execution of arbitrary code. The oldstable distribution (sarge) doesn't include xulrunner.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 25780
    published 2007-07-27
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25780
    title Debian DSA-1337-1 : xulrunner - several vulnerabilities
  • NASL family SuSE Local Security Checks
    NASL id SUSE_MOZILLAFIREFOX-3935.NASL
    description This update brings Mozilla Firefox to security update version 2.0.0.5 Following security problems were fixed : - MFSA 2007-18: Crashes with evidence of memory corruption The usual collection of stability fixes for crashes that look suspicious but haven't been proven to be exploitable. 25 were in the browser engine, reported by Mozilla developers and community members Bernd Mielke, Boris Zbarsky, David Baron, Daniel Veditz, Jesse Ruderman, Lukas Loehrer, Martijn Wargers, Mats Palmgren, Olli Pettay, Paul Nickerson,and Vladimir Sukhoy (CVE-2007-3734) 7 were in the JavaScript engine reported by Asaf Romano, Jesse Ruderman, Igor Bukanov (CVE-2007-3735) - MFSA 2007-19 / CVE-2007-3736: XSS using addEventListener and setTimeout moz_bug_r_a4 reported that scripts could be injected into another site's context by exploiting a timing issue using addEventLstener or setTimeout. - MFSA 2007-20 / CVE-2007-3089: frame spoofing Ronen Zilberman and Michal Zalewski both reported that it was possible to exploit a timing issue to inject content into about:blank frames in a page. - MFSA 2007-21 / CVE-2007-3737: Privilege escalation using an event handler attached to an element not in the document Reported by moz_bug_r_a4. - MFSA 2007-22 / CVE-2007-3285: File type confusion due to %00 in name Ronald van den Heetkamp reported that a filename URL containing %00 (encoded null) can cause Firefox to interpret the file extension differently than the underlying Windows operating system potentially leading to unsafe actions such as running a program. - MFSA 2007-23 / CVE-2007-3670: Remote code execution by launching Firefox from Internet Explorer Greg MacManus of iDefense and Billy Rios of Verisign independently reported that links containing a quote (') character could be used in Internet Explorer to launch registered URL Protocol handlers with extra command-line parameters. Firefox and Thunderbird are among those which can be launched, and both support a '-chrome' option that could be used to run malware. This problem does not affect Linux. - MFSA 2007-24 / CVE-2007-3656: unauthorized access to wyciwyg:// documents Michal Zalewski reported that it was possible to bypass the same-origin checks and read from cached (wyciwyg) documents - MFSA 2007-25 / CVE-2007-3738: XPCNativeWrapper pollution shutdown and moz_bug_r_a4 reported two separate ways to modify an XPCNativeWrapper such that subsequent access by the browser would result in executing user-supplied code.
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 27123
    published 2007-10-17
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27123
    title openSUSE 10 Security Update : MozillaFirefox (MozillaFirefox-3935)
  • NASL family CentOS Local Security Checks
    NASL id CENTOS_RHSA-2007-0724.NASL
    description Updated firefox packages that fix several security bugs are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla Firefox is an open source Web browser. Several flaws were found in the way Firefox processed certain malformed JavaScript code. A web page containing malicious JavaScript code could cause Firefox to crash or potentially execute arbitrary code as the user running Firefox. (CVE-2007-3734, CVE-2007-3735, CVE-2007-3737, CVE-2007-3738) Several content injection flaws were found in the way Firefox handled certain JavaScript code. A web page containing malicious JavaScript code could inject arbitrary content into other web pages. (CVE-2007-3736, CVE-2007-3089) A flaw was found in the way Firefox cached web pages on the local disk. A malicious web page may be able to inject arbitrary HTML into a browsing session if the user reloads a targeted site. (CVE-2007-3656) Users of Firefox are advised to upgrade to these erratum packages, which contain backported patches that correct these issues.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 25741
    published 2007-07-23
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25741
    title CentOS 4 / 5 : firefox (CESA-2007:0724)
  • NASL family Windows
    NASL id MOZILLA_FIREFOX_2005.NASL
    description The installed version of Firefox is affected by various security issues, one of which may lead to execution of arbitrary code on the affected host subject to the user's privileges.
    last seen 2019-02-21
    modified 2018-07-16
    plugin id 25735
    published 2007-07-19
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25735
    title Firefox < 2.0.0.5 Multiple Vulnerabilities
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2007-1157.NASL
    description Updated firefox packages that fix several security bugs are now available for Fedora 7. Users of Blam are advised to upgrade to this errata package, which has been rebuilt against the updated Firefox package. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-21
    plugin id 27701
    published 2007-11-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=27701
    title Fedora 7 : blam-1.8.3-5.fc7 (2007-1157)
  • NASL family Scientific Linux Local Security Checks
    NASL id SL_20070718_THUNDERBIRD_ON_SL5_X.NASL
    description Several flaws were found in the way Thunderbird processed certain malformed JavaScript code. A malicious HTML email message containing JavaScript code could cause Thunderbird to crash or potentially execute arbitrary code as the user running Thunderbird. JavaScript support is disabled by default in Thunderbird; these issues are not exploitable unless the user has enabled JavaScript. (CVE-2007-3089, CVE-2007-3734, CVE-2007-3735, CVE-2007-3736, CVE-2007-3737, CVE-2007-3738)
    last seen 2019-02-21
    modified 2019-01-07
    plugin id 60230
    published 2012-08-01
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=60230
    title Scientific Linux Security Update : thunderbird on SL5.x, SL4.x, SL3.x i386/x86_64
  • NASL family Red Hat Local Security Checks
    NASL id REDHAT-RHSA-2007-0722.NASL
    description Updated SeaMonkey packages that fix several security bugs are now available for Red Hat Enterprise Linux 2.1, 3, and 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. SeaMonkey is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor. Several flaws were found in the way SeaMonkey processed certain malformed JavaScript code. A web page containing malicious JavaScript code could cause SeaMonkey to crash or potentially execute arbitrary code as the user running SeaMonkey. (CVE-2007-3734, CVE-2007-3735, CVE-2007-3737, CVE-2007-3738) Several content injection flaws were found in the way SeaMonkey handled certain JavaScript code. A web page containing malicious JavaScript code could inject arbitrary content into other web pages. (CVE-2007-3736, CVE-2007-3089) A flaw was found in the way SeaMonkey cached web pages on the local disk. A malicious web page may be able to inject arbitrary HTML into a browsing session if the user reloads a targeted site. (CVE-2007-3656) Users of SeaMonkey are advised to upgrade to these erratum packages, which contain backported patches that correct these issues.
    last seen 2019-02-21
    modified 2018-11-16
    plugin id 25751
    published 2007-07-23
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25751
    title RHEL 2.1 / 3 / 4 : seamonkey (RHSA-2007:0722)
  • NASL family Oracle Linux Local Security Checks
    NASL id ORACLELINUX_ELSA-2007-0722.NASL
    description From Red Hat Security Advisory 2007:0722 : Updated SeaMonkey packages that fix several security bugs are now available for Red Hat Enterprise Linux 2.1, 3, and 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. SeaMonkey is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor. Several flaws were found in the way SeaMonkey processed certain malformed JavaScript code. A web page containing malicious JavaScript code could cause SeaMonkey to crash or potentially execute arbitrary code as the user running SeaMonkey. (CVE-2007-3734, CVE-2007-3735, CVE-2007-3737, CVE-2007-3738) Several content injection flaws were found in the way SeaMonkey handled certain JavaScript code. A web page containing malicious JavaScript code could inject arbitrary content into other web pages. (CVE-2007-3736, CVE-2007-3089) A flaw was found in the way SeaMonkey cached web pages on the local disk. A malicious web page may be able to inject arbitrary HTML into a browsing session if the user reloads a targeted site. (CVE-2007-3656) Users of SeaMonkey are advised to upgrade to these erratum packages, which contain backported patches that correct these issues.
    last seen 2019-02-21
    modified 2018-07-18
    plugin id 67546
    published 2013-07-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=67546
    title Oracle Linux 3 / 4 : seamonkey (ELSA-2007-0722)
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-200708-09.NASL
    description The remote host is affected by the vulnerability described in GLSA-200708-09 (Mozilla products: Multiple vulnerabilities) Mozilla developers fixed several bugs, including an issue with modifying XPCNativeWrappers (CVE-2007-3738), a problem with event handlers executing elements outside of the document (CVE-2007-3737), and a cross-site scripting (XSS) vulnerability (CVE-2007-3736). They also fixed a problem with promiscuous IFRAME access (CVE-2007-3089) and an XULRunner URL spoofing issue with the wyciwyg:// URI and HTTP 302 redirects (CVE-2007-3656). Denials of Service involving corrupted memory were fixed in the browser engine (CVE-2007-3734) and the JavaScript engine (CVE-2007-3735). Finally, another XSS vulnerability caused by a regression in the CVE-2007-3089 patch was fixed (CVE-2007-3844). Impact : A remote attacker could entice a user to view a specially crafted web page that will trigger one of the vulnerabilities, possibly leading to the execution of arbitrary code or a Denial of Service. It is also possible for an attacker to perform cross-site scripting attacks, which could result in the exposure of sensitive information such as login credentials. Workaround : There is no known workaround at this time.
    last seen 2019-02-21
    modified 2018-07-11
    plugin id 25888
    published 2007-08-15
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25888
    title GLSA-200708-09 : Mozilla products: Multiple vulnerabilities
oval via4
accepted 2013-04-29T04:15:35.807-04:00
class vulnerability
contributors
  • name Aharon Chernin
    organization SCAP.com, LLC
  • name Dragos Prisaca
    organization G2, Inc.
definition_extensions
  • comment The operating system installed on the system is Red Hat Enterprise Linux 3
    oval oval:org.mitre.oval:def:11782
  • comment CentOS Linux 3.x
    oval oval:org.mitre.oval:def:16651
  • comment The operating system installed on the system is Red Hat Enterprise Linux 4
    oval oval:org.mitre.oval:def:11831
  • comment CentOS Linux 4.x
    oval oval:org.mitre.oval:def:16636
  • comment Oracle Linux 4.x
    oval oval:org.mitre.oval:def:15990
  • comment The operating system installed on the system is Red Hat Enterprise Linux 5
    oval oval:org.mitre.oval:def:11414
  • comment The operating system installed on the system is CentOS Linux 5.x
    oval oval:org.mitre.oval:def:15802
  • comment Oracle Linux 5.x
    oval oval:org.mitre.oval:def:15459
description Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 2.0.0.5 allows remote attackers to inject arbitrary web script "into another site's context" via a "timing issue" involving the (1) addEventListener or (2) setTimeout function, probably by setting events that activate after the context has changed.
family unix
id oval:org.mitre.oval:def:11749
status accepted
submitted 2010-07-09T03:56:16-04:00
title Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 2.0.0.5 allows remote attackers to inject arbitrary web script "into another site's context" via a "timing issue" involving the (1) addEventListener or (2) setTimeout function, probably by setting events that activate after the context has changed.
version 24
redhat via4
advisories
  • rhsa
    id RHSA-2007:0722
  • rhsa
    id RHSA-2007:0723
  • rhsa
    id RHSA-2007:0724
rpms
  • seamonkey-0:1.0.9-0.3.el3
  • seamonkey-chat-0:1.0.9-0.3.el3
  • seamonkey-devel-0:1.0.9-0.3.el3
  • seamonkey-dom-inspector-0:1.0.9-0.3.el3
  • seamonkey-js-debugger-0:1.0.9-0.3.el3
  • seamonkey-mail-0:1.0.9-0.3.el3
  • seamonkey-nspr-0:1.0.9-0.3.el3
  • seamonkey-nspr-devel-0:1.0.9-0.3.el3
  • seamonkey-nss-0:1.0.9-0.3.el3
  • seamonkey-nss-devel-0:1.0.9-0.3.el3
  • seamonkey-0:1.0.9-4.el4
  • seamonkey-chat-0:1.0.9-4.el4
  • seamonkey-devel-0:1.0.9-4.el4
  • seamonkey-dom-inspector-0:1.0.9-4.el4
  • seamonkey-js-debugger-0:1.0.9-4.el4
  • seamonkey-mail-0:1.0.9-4.el4
  • seamonkey-nspr-0:1.0.9-4.el4
  • seamonkey-nspr-devel-0:1.0.9-4.el4
  • seamonkey-nss-0:1.0.9-4.el4
  • seamonkey-nss-devel-0:1.0.9-4.el4
  • thunderbird-0:1.5.0.12-0.3.el4
  • thunderbird-0:1.5.0.12-3.el5
  • firefox-0:1.5.0.12-0.3.el4
  • firefox-0:1.5.0.12-3.el5
  • firefox-devel-0:1.5.0.12-3.el5
refmap via4
bid 24946
bugtraq
  • 20070720 rPSA-2007-0148-1 firefox thunderbird
  • 20070724 FLEA-2007-0033-1: firefox thunderbird
confirm
debian
  • DSA-1337
  • DSA-1338
  • DSA-1339
gentoo GLSA-200708-09
hp
  • HPSBUX02153
  • SSRT061181
mandriva MDKSA-2007:152
sectrack 1018410
secunia
  • 25589
  • 26072
  • 26095
  • 26103
  • 26106
  • 26107
  • 26149
  • 26151
  • 26159
  • 26179
  • 26204
  • 26205
  • 26211
  • 26216
  • 26258
  • 26271
  • 26460
  • 28135
sgi 20070701-01-P
sunalert
  • 103177
  • 201516
suse SUSE-SA:2007:049
ubuntu USN-490-1
vupen
  • ADV-2007-2564
  • ADV-2007-4256
xf mozilla-addeventlistener-settimeout-xss(35462)
Last major update 07-03-2011 - 21:57
Published 18-07-2007 - 13:30
Last modified 15-10-2018 - 17:30
Back to Top