Incorrect integer value: '' for column 'id' at row 1
     SPORTSFISH         FORUMS         FISHING         BOATING         GALLERY         LIBRARY         DIRECTORY     
 Fish Home : Welcome to the Sportsfish Network

 
 All Forums
 Sportsfish Notice Board
 Political Fishing Issues
 Firefox Executation Security Flaw.
Author Previous Topic Topic Next Topic  

Neil
SportsFish


Australia
3823 Posts

Member No: #1

Posted - 09 May 2005 :  3:20:36 PM  Show Profile  Visit Neil's Homepage Send Neil a Private Message
Watch for release/update to fix yet another problem found in FireFox:

Mozilla Arbitrary Code Executation Security Flaw
Sunday May 8th, 2005

A security flaw that allows a malicious site to execute arbitrary code on a user's system has been discovered in Mozilla Firefox. Secunia has probably the one of the more accurate and concise write-ups of the code execution vulnerability. It appears to be the first "Extremely critical" Firefox flaw logged by Secunia.

The advisory explains that a successful attack involves exploiting two flaws: one involves tricking Firefox into thinking a software installation is being triggered by a whitelisted site, while the other relies on the software installation trigger not sufficiently checking icon URLs containing JavaScript code. The Secunia advisory suggests disabling JavaScript as a workaround; however, simply disabling software installation (Web Features panel of the Options/Preferences window in Firefox 1.0.3 or the Content panel in the latest trunk builds) eliminates the problem. We understand that a change made to Mozilla Update has made the vulnerability effectively unexploitable if you only have update.mozilla.org and addons.mozilla.org in your software installation whitelist (accessible from the Web Features or Content panel in the Options/Preferences window), which is the default setting.

The vulnerability was discovered by Paul of Greyhats Security Group and Michael "mikx" Krax. Paul has written a detailed technical explanation of how the exploit works. On a specially crafted page, the attacker first uses frames and a JavaScript history flaw to make it appear that a software installation is being triggered from addons.update.mozilla.org, one of the few sites allowed to install software by default. With this hurdle out of the way, the attacker can attempt to do some real damage. One of the parameters passed to the software installation method is an icon URL, which can be a piece of JavaScript code. As this JavaScript is executed from the chrome (the browser user interface rather than a Web page), it has 'full chrome privileges' and can do anything that the user running Firefox can. The attacker can therefore pass in some malicious JavaScript and run arbitrary code on the victim's system.

The vulnerability requires the attacker to trigger an install that appears to come from a whitelisted site. Fortunately, the Mozilla Foundation controls all of the sites in the default software installation whitelist, which has allowed them to take some preventative action by placing more checks in the server-side Mozilla Update code and moving the update site to another domain. We believe this means that users who have not added any additional sites to their software installation whitelist are no longer at risk.

Paul and mikx reported the vulnerability to the Mozilla Foundation and bug 292691 was filed on Monday 2nd May. In line with the Mozilla security bugs policy, access to the bug report was restricted to members of the security team. However, somebody else found out and leaked the details of the exploit. The French Security Incident Response Team (FrSIRT) was one of the first security companies to publish an advisory based on the leaked information. In a message to the Full Disclosure mailing list, Paul criticised the individual who leaked the details of the Firefox code execution exploit, condemning his or her actions as "inconsiderate" and "irresponsible". Since the exploit became public knowledge, several duplicate bug reports have been filed, including bug 293302.

Sailfish
Linux Powered


Australia
2855 Posts

Member No: #51

Posted - 09 May 2005 :  7:32:56 PM  Show Profile  Visit Sailfish's Homepage Send Sailfish a Private Message
Nice try mate.........you didnt read on did you?? nor did you research it further.......

NUMBER ONE. The flaw can ONLY be excecuted by the USER...........................it is not excecuted remotely by the website as in "activeX enabled browsers"....only MORONS will be effected for a start......but it has been noted and a fix will be issued directly...............
Now would you like to hear about the STILL UNPATCHED vulnerabilities of a certain other browser ??????

quote:
The vulnerability requires the attacker to trigger an install that appears to come from a whitelisted site.

quote:
Fortunately, the Mozilla Foundation controls all of the sites in the default software installation whitelist, which has allowed them to take some preventative action by placing more checks in the server-side Mozilla Update code and moving the update site to another domain. We believe this means that users who have not added any additional sites to their software installation whitelist are no longer at risk.





Edited by - Sailfish on 09 May 2005 8:16:41 PM
Go to Top of Page

Sailfish
Linux Powered


Australia
2855 Posts

Member No: #51

Posted - 09 May 2005 :  7:37:49 PM  Show Profile  Visit Sailfish's Homepage Send Sailfish a Private Message
Go to Top of Page

Sailfish
Linux Powered


Australia
2855 Posts

Member No: #51

Posted - 09 May 2005 :  7:45:08 PM  Show Profile  Visit Sailfish's Homepage Send Sailfish a Private Message
But, if you are genuinely worried and paraniod and running FireFox on vv1nd0z3........ Go to >Tools>Options>Web Features>Unclick "Allow Websites to Install Software". You can also click the button that says "Allowed Sites" and clear all sites from the list. MOst importantly the "addons.update.mozilla.org" , "update.mozilla.org".
and when the flaw is patched reinstate "addons.update.mozilla.org" , "update.mozilla.org" in the required spaces........



Go to Top of Page

Sailfish
Linux Powered


Australia
2855 Posts

Member No: #51

Posted - 09 May 2005 :  8:20:15 PM  Show Profile  Visit Sailfish's Homepage Send Sailfish a Private Message
C'mon Dude !!!!
where are ya ????

"Bring It On"

please ensure Brain is engaged before putting mouth into gear


errrr ???????????
Firefox Executation.........????????????




Edited by - Sailfish on 09 May 2005 8:25:05 PM
Go to Top of Page

Neil
SportsFish


Australia
3823 Posts

Member No: #1

Posted - 09 May 2005 :  8:41:23 PM  Show Profile  Visit Neil's Homepage Send Neil a Private Message
I mean really!!!!!!!!! sailie has the doc up there run out of tabs or what??????????

The first post is taken directly from the Firefox site.. Why are you having a go at me

Here is the link http://www.mozillazine.org/talkback.html?article=6582

Seeing as your ramming home Firefox to any-one that stands still for a few secs, I thought it only prudent that the new Firefox users should be aware of (yet another) issue with the "ace" browser.

Or is it that your just so paranoid about Microsoft????

Mate I cant see where in my post I mentioned Microsoft havent at times had issues with their browser but hey with 94.30% of the market that can be understandable.

Gee's take a bex!!!!!!!!!!!!!!!!

Neil

Go to Top of Page

Sailfish
Linux Powered


Australia
2855 Posts

Member No: #51

Posted - 09 May 2005 :  8:43:33 PM  Show Profile  Visit Sailfish's Homepage Send Sailfish a Private Message
ps.... The Lionel is cooking tonight!!!
he's making me a batch of Sambal.....
(Indonesian liquid Chili Lava)

(edible variety....kinda )

(Heather refuses to enter the kitchen and the kids are on sleepovers.......)




Edited by - Sailfish on 09 May 2005 8:45:15 PM
Go to Top of Page

Sailfish
Linux Powered


Australia
2855 Posts

Member No: #51

Posted - 09 May 2005 :  8:48:01 PM  Show Profile  Visit Sailfish's Homepage Send Sailfish a Private Message
and microdot is no longer on 94.3%....... find a better statistics site...!!



Go to Top of Page

Sailfish
Linux Powered


Australia
2855 Posts

Member No: #51

Posted - 09 May 2005 :  9:02:54 PM  Show Profile  Visit Sailfish's Homepage Send Sailfish a Private Message
quote:
Originally posted by Neil:
I mean really!!!!!!!!! sailie has the doc up there run out of tabs or what??????????

The first post is taken directly from the Firefox site.. Why are you having a go at me

Here is the link http://www.mozillazine.org/talkback.html?article=6582

Seeing as your ramming home Firefox to any-one that stands still for a few secs, I thought it only prudent that the new Firefox users should be aware of (yet another) issue with the "ace" browser.

Or is it that your just so paranoid about Microsoft????

Mate I cant see where in my post I mentioned Microsoft havent at times had issues with their browser but hey with 94.30% of the market that can be understandable.

Gee's take a bex!!!!!!!!!!!!!!!!

Neil





Mozillazine is a news site for Mozilla.org, Firefox is a software program that is administered by Mozilla.org, here is the Firefox site
http://www.spreadfirefox.com/

some sites are putting IE6 @ 67% and Gecko @ 23% some are IE 75% and Gecko @ 8.2% and others are putting IE6 @ 50% and Gecko @ 36%............. remember that there are more than two browsers in this world....Australia is only a baby in this internet stuff, read up on the UK and Germany or maybe take a look at CHINA (also have a read on how many "opensource" programmers come from Australia..........)



Go to Top of Page

Sailfish
Linux Powered


Australia
2855 Posts

Member No: #51

Posted - 09 May 2005 :  9:21:24 PM  Show Profile  Visit Sailfish's Homepage Send Sailfish a Private Message
“If you want to inspire confidence, give plenty of statistics. It does not matter that they should be accurate, or even intelligible, as long as there is enough of them” — Lewis Carroll
~
“Statistics are like lampposts: they are good to lean on, but they don't shed much light” — Robert Storm-Petersen
~
“Get your facts first, and then you can distort them as much as you please: facts are stubborn, but statistics are more pliable” — Mark Twain
~
[more stats quotes...]

Stats should therefore be used only as very rough predictors. E.g. consider the diverse stats reported in the table Browser Usage Stats:

* Source 1 stats are from an IPP. There is a very large percentage of 'unidentified' browsers, likely meaning that the stats source isn't fully reporting less-common browsers, e.g. Opera and non-Netscape Gecko-based browsers.
* Source 2 stats are from EWS. Percentages reported by EWS miscount KHTML- and Gecko-based browsers: but a userAgent list is reported from which I can compute KHTML and Gecko stats. Note also that EWS counts hosts rather than page accesses, which are not strictly comparable.
* Source 3 stats are from a USGS server. Users are mainly from the US, many from government and educational institutions. There is a large percentage of 'unidentified' browsers, likely meaning that the stats source isn't fully reporting less-common browsers, e.g. Opera and the KHTML-based browsers.
* Source 4 stats are from sites that use a hit counter.
* Source 5 stats are from this domain. Because of its special audience, its stats apply to a narrow segment of the population. There is a very large percentage of 'unidentified' browsers, likely meaning that the stats source isn't fully reporting less-common browsers: e.g. it does not report any KHTML-based browsers, and it only reports Opera browsers that are not configured to spoof other browsers.

The best stats for a site are the stats gathered for that particular site: and even these are skewed by caching and faulty browser-detection. For example, consider Kerry Watson's Browser Statistics page: this page uses three different hit counters whose reports should be comparable; but they are not, in part because of faulty browser detection.

Bottom line: use statistics with extreme caution.



Go to Top of Page

Neil
SportsFish


Australia
3823 Posts

Member No: #1

Posted - 09 May 2005 :  10:12:35 PM  Show Profile  Visit Neil's Homepage Send Neil a Private Message
Yawn

Go to Top of Page

Sailfish
Linux Powered


Australia
2855 Posts

Member No: #51

Posted - 09 May 2005 :  10:24:18 PM  Show Profile  Visit Sailfish's Homepage Send Sailfish a Private Message
I win you lose.... (again )


ya want some sambal ???? makes ya forget everything for awhile...........



Go to Top of Page

Gazza
Marlin


Australia
569 Posts

Member No: #66

Posted - 10 May 2005 :  1:06:20 PM  Show Profile Send Gazza a Private Message
quote:
It appears to be the first "Extremely critical" Firefox flaw logged by Secunia.



Fire-FIZZ!!





another 50M downloads of crapware ,to fix crapware

Go to Top of Page

Gazza
Marlin


Australia
569 Posts

Member No: #66

Posted - 10 May 2005 :  1:22:54 PM  Show Profile Send Gazza a Private Message
tut,tut,tutttt Sailie ,bashing up the "true believers" already mate
quote:
only MORONS will be effected for a start


hmmmmmmm....


This geek-quote mate ,like your logic!!!
quote:
Australia is only a baby in this internet stuff, read up on the UK and Germany or maybe take a look at CHINA


So China has more bicycles
So bikes are better than cars

Fried sailie-nutz....Yummm


GOOD-one...NOT!!


Go to Top of Page

Sailfish
Linux Powered


Australia
2855 Posts

Member No: #51

Posted - 10 May 2005 :  5:41:06 PM  Show Profile  Visit Sailfish's Homepage Send Sailfish a Private Message
Have you got any idea what you are saying gaz?? cause I dont!! or have you already clicked the yes button??



Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Topic Locked
 Printer Friendly
Jump To:
Sportsfish Australia © Sportsfish Australia 2000 - 2014 Go To Top Of Page
This page was generated in 0.16 seconds. Snitz Forums 2000