English | Vietnamese
 

banner

[Rule] Rules  [Home] Main Forum  [Portal] Portal  
[Members] Member Listing  [Statistics] Statistics  [Search] Search  [Reading Room] Reading Room 
[Register] Register   [Login] Loginhttp  | https  ]
 
Forum Index Thông tin new bugs và exploits Mozilla Firefox "jar:" Protocol Handling Cross-Site Scripting ...  XML
  [Announcement]   Mozilla Firefox "jar:" Protocol Handling Cross-Site Scripting ... 23/11/2007 10:00:37 (+0700) | #1 | 99468
[Avatar]
 ThíchHắcKinh
Member
[Minus]    0    [Plus]
Joined: 05/11/2007 21:56:23
Messages: 85
Location: Thiếu Lâm Tự
Offline
[Profile] [PM]

Secunia Advisory: SA27605
Release Date: 2007-11-09
Last Update: 2007-11-14

Critical:
Less critical
Impact: Cross Site Scripting
Where: From remote
Solution Status: Unpatched

Software: Mozilla Firefox 2.0.x

CVE reference: CVE-2007-5947 (Secunia mirror)

This advisory is currently marked as unpatched!
- Companies can be alerted when a patch is released!


Description:
A security issue has been reported in Mozilla Firefox, which can be exploited by malicious people to conduct cross-site scripting attacks.

The problem is that the "jar:" protocol handler does not validate the MIME type of the contents of an archive, which are then executed in the context of the site hosting the archive. This can be exploited to conduct cross-site scripting attacks on sites that allow a user to upload certain files (e.g. .zip, .png, .doc, .odt, .txt).

Solution:
Do not follow untrusted "jar:" links or browse untrusted websites.
 


nguo^`n : http://secunia.com/advisories/27605/

Demo

Lo+.i du.ng .zip file:
jar:http://sgstars.110mb.com/test.zip!/testhva.html

Lo+.i du.ng .png file:
jar:http://sgstars.110mb.com/test.png!/testhva.html
[Up] [Print Copy]
  [Question]   Re: Mozilla Firefox "jar:" Protocol Handling Cross-Site Scripting ... 23/11/2007 13:28:00 (+0700) | #2 | 99506
[Avatar]
 blueocean89
Member
[Minus]    0    [Plus]
Joined: 31/08/2007 12:06:33
Messages: 156
Location: r00f
Offline
[Profile] [PM]
hai link demo...ko test được smilie. Em thấy giao thức jar...trước giờ không rõ nó là gì, có huynh nào chỉ bảo giùm em với ạ.
trons pacrette tiolpsatem otkin ypacs
[Up] [Print Copy]
[digg] [delicious] [google] [yahoo] [technorati] [reddit] [stumbleupon]
Go to: 
 Users currently in here 
1 Anonymous

Powered by JForum - Extended by HVAOnline
 hvaonline.net  |  hvaforum.net  |  hvazone.net  |  hvanews.net  |  vnhacker.org
1999 - 2013 © v2012|0504|218|