Firefox Lets Remote Users Invoke eval and Script Objects With Elevated Privileges
|
|
SecurityTracker Alert ID: 1013965
|
|
SecurityTracker URL: http://securitytracker.com/id?1013965
|
|
CVE Reference: CAN-2005-1532
(Links to External Site)
|
Updated: Jun 29 2005
|
Original Entry Date: May 12 2005
|
Impact: Execution of arbitrary code via network, User access via network
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Advisory: Mozilla Foundation Security Advisory
|
Version(s): prior to 1.0.4
|
Description: A vulnerability was reported in the Firefox web browser. A remote user can cause scripting code to be executed with elevated privileges.
A remote user can create HTML that can cause privileged code to invoke eval() or Script() objects with user-supplied data. Scripts
in the HTML can override properties and methods of non-DOM nodes.
No further details were provided.
The vendor credits moz_bug_r_a4
with reporting this vulnerability.
|
Impact: A remote user can execute arbitrary scripting code with elevated privileges.
|
Solution: The vendor has issued a fixed version (1.0.4), available at:
http://www.mozilla.org/products/firefox/
|
Vendor URL: www.mozilla.org/security/announce/mfsa2005-44.html (Links to External Site)
|
Cause: Access control error
|
Underlying OS: Linux (Any), UNIX (Any), Windows (Any)
|
|
Message History:
This archive entry has one or more follow-up message(s) listed below.
|
Source Message Contents
|
Date: Thu, 12 May 2005 10:57:08 -0400
Subject: http://www.mozilla.org/security/announce/mfsa2005-44.html
|
> Title: Privilege escalation via non-DOM property overrides
> Severity: Critical
> Reporter: moz_bug_r_a4
> Products: Firefox, Mozilla Suite
> Fixed in: Firefox 1.0.4
> Mozilla Suite 1.7.8
> Additional checks were added to make sure Javascript eval and Script objects are run
> with the privileges of the context that created them, not the potentially elevated
> privilege of the context calling them in order to protect against an additional
> variant of MFSA 2005-41.
|
|
