Rapid7 Vulnerability & Exploit Database

Mozilla Firefox Multiple Vulnerabilities Fixed in versions 2.0.0.18 and 3.0.4

Back to Search

Mozilla Firefox Multiple Vulnerabilities Fixed in versions 2.0.0.18 and 3.0.4

Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
11/12/2008
Created
07/25/2018
Added
02/25/2009
Modified
02/13/2015

Description

The context of Windows .url shortcut files are not properly identified. This could allow remote attackers to bypass the same-origin policy and obtain sensitive information. (CVE-2008-4582)

When processing a canvas element, the source URI is not properly changed. This could allow remote attackers to bypass the same-origin policy and access arbitrary images. (CVE-2008-5012)

Certain versions of Mozilla Firefox do not check when the Flash module has been dynamically unloaded. This could allow remote attackers to execute arbitrary code via a specially crafted SWF file. (CVE-2008-5013)

A flawed implementation of jslock.cpp could allow remote attackers to cause a denial of service and execute arbitrary code. (CVE-2008-5014)

Chrome privileges are assigned to a file URI when it is accessed in the same tab as a chrome or privileged about page. This could allow attackers to execute arbitrary JavaScript with chrome privileges. (CVE-2008-5015)

The layout engine could allow remote attackers to cause a denial of service via multiple vectors. (CVE-2008-5016)

An integer overflow in the browser engine could allow remote attackers to cause a denial of service via unknown vectors.(CVE-2008-5017)

The JavaScript engine could allow remote attackers to cause a denial of service via vectors related to "insufficient class checking" in the Date class. (CVE-2008-5018)

The session-restore feature could allow remote attackers to violate the same-origin policy to execute arbitrary JavaScript or conduct cross-site scripting attacks. (CVE-2008-5019)

The http-index-format MIME type parser does not check for an allocation failure. This could allow remote attackers to cause a denial of service and possibly execute arbitrary code via an HTTP index response with a crafted 200 header. (CVE-2008-0017)

nsFrameManager could allow remote attackers to cause a denial of service and possibly execute arbitrary code. (CVE-2008-5021)

The nsXMLHttpRequest::NotifyEventListeners method could allow remote attackers to bypass the same-origin policy and execute arbitrary script via multiple listeners. (CVE-2008-5022)

Certain versions of Mozilla Firefox could allow remote attackers to bypass the protection mechinism for codebase principles and execute arbitrary script via the -moz-binding CSS property in a signed JAR file. (CVE-2008-5023)

Certain versions of Mozilla Firefox do not properly escape quote charackters used for XML processing. This could allow remote attackers to conduct XML injection attacks via the default namespace in an E4X documnet. (CVE-2008-5024)

Solution(s)

  • mozilla-firefox-upgrade-2_0_0_18
  • mozilla-firefox-upgrade-3_0_4

References

  • mozilla-firefox-upgrade-2_0_0_18
  • mozilla-firefox-upgrade-3_0_4

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;