Mozilla Firefox Vulns

win32sux · 03-17-2009, 08:18 AM

Quote:

Originally Posted by win32sux

Bugtraq

NOTE: I can confirm the exploit works on Firefox 3.0.6 (Ubuntu 8.10).

FYI: It also works on Firefox 3.0.7, which is the latest version.

win32sux · 03-26-2009, 06:17 PM

Quote:

Mozilla Firefox is prone to a remote memory-corruption vulnerability.

An attacker can exploit this issue to execute arbitrary code within the context of the affected browser. Failed exploit attempt will result in a denial-of-service condition.

Bugtraq

win32sux · 03-27-2009, 08:17 PM

It addresses two security vulnerabilities, both of which are rated as critical.

boryi · 04-19-2009, 12:15 AM

Thanks

win32sux · 04-22-2009, 07:00 AM

Quote:

Multiple vulnerabilities have been identified in Mozilla Firefox, which could be exploited by attackers to bypass security restrictions, gain knowledge of sensitive information, cause a denial of service or compromise a vulnerable system.

VUPEN Security Advisory

These are fixed in 3.0.9. You can get the full release notes here.

win32sux · 04-26-2009, 01:05 PM

The word on the street is that 3.0.10 will be out shortly to fix a couple more vulnerabilities.

Anyone got any links to reliable information about this?

win32sux · 04-28-2009, 06:17 AM

And here it is, folks. It fixes two bugs, one of which is rated as critical.

win32sux · 06-11-2009, 07:44 PM

It includes fixes for several critical security issues.

win32sux · 06-30-2009, 01:46 PM

I think a notification here doesn't hurt, considering it brings many security and privacy improvements.

win32sux · 07-14-2009, 10:11 AM

Quote:

US-CERT is aware of reports of a vulnerability affecting Mozilla Firefox 3.5. This vulnerability is due to an error in the way JavaScript code is processed. Exploitation of this vulnerability may allow an attacker to execute arbitrary code. Additionally, exploit code is publicly available for this vulnerability.

US-CERT | VUPEN | Secunia

win32sux · 07-17-2009, 10:39 AM

Firefox 3.5.1 was released yesterday to address the above vulnerability, as well as some non-security issues.

win32sux · 07-21-2009, 08:25 PM

Firefox 3.0.12 has been released.

It includes fixes for several security issues, almost all of which have a rating of Critical.

Harry83 · 07-25-2009, 05:47 AM

Quote:

Originally Posted by win32sux

This thread serves as a discussion place for any current security vulnerabilities in Mozilla Firefox. LQ members are encouraged to subscribe to this thread in order to stay informed about the latest Mozilla Firefox security fixes and workarounds. If this is your first time stopping by this thread, get the latest info by jumping to the last page.

I will try this very soon.
Nice work mate.

Regards

Harry

win32sux · 07-29-2009, 06:04 PM

Quote:

Juan Pablo Lopez Yacubian has discovered a security issue in Mozilla Firefox, which can be exploited by malicious people to display a fake URL in the address bar.

The security issue is caused due to an error when opening a new window for a malformed domain. This can be exploited to display an arbitrary URL in the address bar of a child window by issuing a "window.open()" call with a domain containing e.g. "%20" characters.

The security issue is confirmed in version 3.0.12 and 3.5.1. Other versions may also be affected.

Secunia Advisory

win32sux · 08-03-2009, 04:39 AM

Quote:

Some vulnerabilities have been reported in Mozilla Firefox, which can potentially be exploited by malicious people to bypass certain security restrictions or to compromise a vulnerable system.

Secunia Advisory

Quote:

IOActive security researcher Dan Kaminsky reported a mismatch in the treatment of domain names in SSL certificates between SSL clients and the Certificate Authorities (CA) which issue server certificates. In particular, if a malicious person requested a certificate for a host name with an invalid null character in it most CAs would issue the certificate if the requester owned the domain specified after the null, while most SSL clients (browsers) ignored that part of the name and used the unvalidated part in front of the null. This made it possible for attackers to obtain certificates that would function for any site they wished to target. These certificates could be used to intercept and potentially alter encrypted communication between the client and a server such as sensitive bank account transactions.

MFSA 2009-42

Quote:

Moxie Marlinspike reported a heap overflow vulnerability in the code that handles regular expressions in certificate names. This vulnerability could be used to compromise the browser and run arbitrary code by presenting a specially crafted certificate to the client. This code provided compatibility with the non-standard regular expression syntax historically supported by Netscape clients and servers. With version 3.5 Firefox switched to the more limited industry-standard wildcard syntax instead and is not vulnerable to this flaw.

MFSA 2009-43