Mozilla Firefox and SeaMonkey document.location URL spoofing

firefox-documentlocation-spoofing (54808) The risk level is classified as MediumMedium Risk

Description:

Mozilla Firefox and SeaMonkey could allow a remote attacker to conduct spoofing attacks, caused by an error when setting the document.location property. A remote attacker could exploit this vulnerability using a specially-crafted document.location URL value to inject HTML and JavaScript into the body of a blank page that appears to be trusted.


Consequences:

Gain Access

Remedy:

Refer to MFSA 2009-69 for patch, upgrade or suggested workaround information. See References.

References:

  • MFSA 2009-69: Location bar spoofing vulnerabilities.
  • BID-37349: RETIRED: Mozilla Firefox and SeaMonkey MFSA 2009-65 through -71 Multiple Vulnerabilities
  • BID-37370: Mozilla Firefox and Sea Monkey Content Injection Spoofing Vulnerability
  • CVE-2009-3985: Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey before 2.0.1, allows remote attackers to associate spoofed content with an invalid URL by setting document.location to this URL, and then writing arbitrary web script or HTML to the associated blank document, a related issue to CVE-2009-2654.
  • DSA-1956: xulrunner -- several vulnerabilities
  • MDVSA-2009:338: firefox
  • MDVSA-2009:339: firefox
  • RHSA-2009-1674: Critical: firefox security update
  • SA37699: Mozilla Firefox Multiple Vulnerabilities
  • SA37785: Mozilla SeaMonkey Multiple Vulnerabilities
  • SA37883: Avaya CMS Multiple Vulnerabilities
  • SA37919: Avaya Products Mozilla Firefox Multiple Vulnerabilities
  • SECTRACK ID: 1023342: Mozilla Firefox Lets Remote Users Spoof URL Status and Contents
  • SECTRACK ID: 1023343: Mozilla Seamonkey Lets Remote Users Spoof URL Status and Contents
  • SUSE-SA:2009:063: Mozilla Firefox security update
  • SUSE-SR:2009:020: SUSE Security Summary Report
  • USN-873-1: Firefox 3.0 and Xulrunner 1.9 vulnerabilities
  • USN-874-1: Firefox 3.5 and Xulrunner 1.9.1 vulnerabilities
  • USN-877-1: Firefox 3.0 and Xulrunner 1.9 regression
  • USN-878-1: Firefox 3.5 and Xulrunner 1.9.1 regression
  • VUPEN/ADV-2009-3547: Mozilla Products Code Execution and Security Bypass Vulnerabilities

Platforms Affected:

  • Avaya Communication Manager
  • Avaya Intuity Audix LX
  • Avaya Message Networking
  • Avaya Message Storage Server
  • Canonical Ubuntu 6.06 LTS
  • Canonical Ubuntu 8.04 LTS
  • Canonical Ubuntu 8.10
  • Debian Debian Linux 5.0
  • MandrakeSoft Mandrake Linux 2008.0
  • MandrakeSoft Mandrake Linux 2008.0 X86_64
  • Mandriva Enterprise Server 5 X86_64
  • Mandriva Enterprise Server 5
  • Mandriva Linux 2009.0 X86_64
  • Mandriva Linux 2009.1
  • Mandriva Linux 2009.1 X86_64
  • Mandriva Linux 2010 X86_64
  • Mandriva Linux 2010
  • Mozilla Firefox 3.0.1
  • Mozilla Firefox 3.0.10
  • Mozilla Firefox 3.0.11
  • Mozilla Firefox 3.0.12
  • Mozilla Firefox 3.0.13
  • Mozilla Firefox 3.0.14
  • Mozilla Firefox 3.0.15
  • Mozilla Firefox 3.5
  • Mozilla Firefox 3.5.1
  • Mozilla Firefox 3.5.2
  • Mozilla Firefox 3.5.3
  • Mozilla Firefox 3.5.4
  • Mozilla Firefox 3.5.5
  • Mozilla SeaMonkey 1.0 Dev
  • Mozilla SeaMonkey 1.0
  • Mozilla SeaMonkey 1.0 Alpha
  • Mozilla SeaMonkey 1.0 Beta
  • Mozilla SeaMonkey 1.0.1
  • Mozilla SeaMonkey 1.0.2
  • Mozilla SeaMonkey 1.0.3
  • Mozilla SeaMonkey 1.0.4
  • Mozilla SeaMonkey 1.0.5
  • Mozilla SeaMonkey 1.0.6
  • Mozilla SeaMonkey 1.0.7
  • Mozilla SeaMonkey 1.0.8
  • Mozilla SeaMonkey 1.0.9
  • Mozilla SeaMonkey 1.0.99
  • Mozilla SeaMonkey 1.1
  • Mozilla SeaMonkey 1.1 Beta
  • Mozilla SeaMonkey 1.1 Alpha
  • Mozilla SeaMonkey 1.1.0
  • Mozilla SeaMonkey 1.1.1
  • Mozilla SeaMonkey 1.1.10
  • Mozilla SeaMonkey 1.1.11
  • Mozilla SeaMonkey 1.1.12
  • Mozilla SeaMonkey 1.1.13
  • Mozilla SeaMonkey 1.1.14
  • Mozilla SeaMonkey 1.1.15
  • Mozilla SeaMonkey 1.1.2
  • Mozilla SeaMonkey 1.1.3
  • Mozilla SeaMonkey 1.1.4
  • Mozilla SeaMonkey 1.1.5
  • Mozilla SeaMonkey 1.1.6
  • Mozilla SeaMonkey 1.1.7
  • Mozilla SeaMonkey 1.1.8
  • Mozilla SeaMonkey 1.1.9
  • Mozilla SeaMonkey 1.5.0.10
  • Mozilla SeaMonkey 1.5.0.8
  • Mozilla SeaMonkey 1.5.0.9
  • Mozilla SeaMonkey 2.0
  • Novell OpenSUSE 11.0
  • Novell SLE SDK 10 SP2
  • Novell SLE SDK 10
  • Novell SUSE Linux Enterprise 10 SP2 DEBUGINFO
  • Novell SUSE Linux Enterprise Desktop 10 SP2
  • Novell SUSE Linux Enterprise Server 10 SP2
  • Novell SUSE Linux Enterprise Server 10
  • RedHat Enterprise Linux 4 WS
  • RedHat Enterprise Linux 4 ES
  • RedHat Enterprise Linux 4 Desktop
  • RedHat Enterprise Linux 4 AS
  • RedHat Enterprise Linux 4.8.z ES
  • RedHat Enterprise Linux 4.8.z AS
  • RedHat Enterprise Linux 5 Client Workstation
  • RedHat Enterprise Linux 5
  • RedHat Enterprise Linux 5 Client
  • RedHat Enterprise Linux 5.4.z EUS
  • SUSE SuSE Linux 9.0

Reported:

Dec 15, 2009

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email ignore thisxforceignore this@ignore thisus.ignore thisibm.comignore this

Return to the main page