/hvaonline/posts/list/13.html JForum - http://www.jforum.net Secunia Advisory: SA27605 Release Date: 2007-11-09 Last Update: 2007-11-14 Critical: Less critical Impact: Cross Site Scripting Where: From remote Solution Status: Unpatched Software: Mozilla Firefox 2.0.x CVE reference: CVE-2007-5947 (Secunia mirror) This advisory is currently marked as unpatched! - Companies can be alerted when a patch is released! Description: A security issue has been reported in Mozilla Firefox, which can be exploited by malicious people to conduct cross-site scripting attacks. The problem is that the "jar:" protocol handler does not validate the MIME type of the contents of an archive, which are then executed in the context of the site hosting the archive. This can be exploited to conduct cross-site scripting attacks on sites that allow a user to upload certain files (e.g. .zip, .png, .doc, .odt, .txt). Solution: Do not follow untrusted "jar:" links or browse untrusted websites.   nguo^`n : http://secunia.com/advisories/27605/ Demo Lo+.i du.ng .zip file: jar:http://sgstars.110mb.com/test.zip!/testhva.html Lo+.i du.ng .png file: jar:http://sgstars.110mb.com/test.png!/testhva.html ]]> /hvaonline/posts/list/16589.html#99468 /hvaonline/posts/list/16589.html#99468 GMT /hvaonline/posts/list/16589.html#99506 /hvaonline/posts/list/16589.html#99506 GMT