Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 HTTP:STC:FF-NAV-URI

Severity

 Major

Recommended

 No

Recommended Action

 Drop

Category

 HTTP

Keywords

 Firefox and Navigator URI Command Injection

Release Date

 2007/10/30

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: Firefox and Navigator URI Command Injection


This signature detects attempts to exploit a known vulnerability against Firefox, Navigator, and Internet Explorer. Attackers can inject code on the target system resulting in full control of the victim's computer.

Extended Description

Microsoft Internet Explorer, Mozilla Firefox and Netscape Navigator are prone to a vulnerability that lets attackers inject commands through the 'firefoxurl' and 'navigatorurl' protocol handlers. Exploiting these issues allows remote attackers to pass and execute arbitrary commands and arguments through the 'firefox.exe' and 'navigator.exe' processes by employing the 'firefoxurl' and 'navigatorurl' handlers. An attacker can also employ these issues to carry out cross-browser scripting attacks by using the '-chrome' argument. This can allow the attacker to run JavaScript code with the privileges of trusted Chrome context and gain full access to Firefox and Netscape Navigator's resources. Exploiting these issues would permit remote attackers to influence command options that can be called through the 'firefoxurl' and 'navigatorurl' handlers and therefore execute commands and script code with the privileges of a user running the applications. Successful attacks may result in a variety of consequences, including remote unauthorized access.

Affected Products

  • Google chrome 0.2.149.27
  • Google chrome 0.2.149.29
  • Google chrome 0.2.149.30
  • Google chrome 1.0.154.36
  • Google chrome 1.0.154.46
  • Hp hp-ux B.11.11
  • Hp hp-ux B.11.23
  • Hp hp-ux B.11.31
  • Mandriva corporate_server 3.0.0
  • Mandriva corporate_server 3.0.0 X86 64
  • Mandriva corporate_server 4.0
  • Mandriva corporate_server 4.0.0 X86 64
  • Mandriva linux_mandrake 2007.0
  • Mandriva linux_mandrake 2007.0 X86 64
  • Mandriva linux_mandrake 2007.1
  • Mandriva linux_mandrake 2007.1 X86 64
  • Microsoft internet_explorer 6.0
  • Microsoft internet_explorer 6.0 SP1
  • Microsoft internet_explorer 7.0
  • Microsoft internet_explorer 7.0 Beta1
  • Microsoft internet_explorer 7.0 Beta2
  • Microsoft internet_explorer 7.0 Beta3
  • Mozilla camino 0.7.0 .0
  • Mozilla camino 0.8.0
  • Mozilla camino 0.8.3
  • Mozilla camino 0.8.4
  • Mozilla camino 1.0
  • Mozilla camino 1.0.1
  • Mozilla camino 1.0.2
  • Mozilla camino 1.0.3
  • Mozilla camino 1.5
  • Mozilla firefox 2.0
  • Mozilla firefox 2.0.0.1
  • Mozilla firefox 2.0.0.2
  • Mozilla firefox 2.0.0.3
  • Mozilla firefox 2.0.0.4
  • Mozilla firefox 2.0 Beta 1
  • Mozilla firefox 2.0 RC2
  • Mozilla firefox 2.0 RC3
  • Mozilla seamonkey 1.1.1
  • Mozilla seamonkey 1.1.2
  • Mozilla seamonkey 1.1.3
  • Mozilla seamonkey 1.1 Beta
  • Mozilla thunderbird 1.5.0
  • Mozilla thunderbird 1.5.0.1
  • Mozilla thunderbird 1.5.0.10
  • Mozilla thunderbird 1.5.0.12
  • Mozilla thunderbird 1.5.0.13
  • Mozilla thunderbird 1.5.0.2
  • Mozilla thunderbird 1.5.0.4
  • Mozilla thunderbird 1.5.0.5
  • Mozilla thunderbird 1.5.0.7
  • Mozilla thunderbird 1.5.0.8
  • Mozilla thunderbird 1.5.0.9
  • Mozilla thunderbird 1.5.0 Beta 2
  • Mozilla thunderbird 2.0.0.4
  • Netscape navigator 9.0
  • Slackware linux 11.0
  • Slackware linux 12.0
  • Suse linux 10.0 Ppc
  • Suse linux 10.0 X86
  • Suse linux 10.0 X86-64
  • Suse linux 10.1 Ppc
  • Suse linux 10.1 X86
  • Suse linux 10.1 X86-64
  • Suse linux_desktop 10
  • Suse linux_personal 10.0.0 OSS
  • Suse linux_personal 10.1
  • Suse linux_professional 10.0.0
  • Suse linux_professional 10.0.0 OSS
  • Suse linux_professional 10.1
  • Suse novell_linux_desktop 9.0.0
  • Suse novell_linux_pos 9
  • Suse open-enterprise-server
  • Suse opensuse 10.2
  • Suse suse_linux_enterprise_desktop 10
  • Suse suse_linux_enterprise_desktop 10 SP1
  • Suse suse_linux_enterprise_server 10
  • Suse suse_linux_enterprise_server 10 SP1
  • Suse suse_linux_enterprise_server 8
  • Suse suse_linux_openexchange_server 4.0.0
  • Suse suse_linux_retail_solution 8.0.0
  • Suse suse_linux_school_server_for_i386
  • Suse suse_linux_standard_server 8.0.0
  • Suse unitedlinux 1.0.0
  • Ubuntu ubuntu_linux 6.06 LTS Amd64
  • Ubuntu ubuntu_linux 6.06 LTS I386
  • Ubuntu ubuntu_linux 6.06 LTS Powerpc
  • Ubuntu ubuntu_linux 6.06 LTS Sparc
  • Ubuntu ubuntu_linux 6.10 Amd64
  • Ubuntu ubuntu_linux 6.10 I386
  • Ubuntu ubuntu_linux 6.10 Powerpc
  • Ubuntu ubuntu_linux 6.10 Sparc
  • Ubuntu ubuntu_linux 7.04 Amd64
  • Ubuntu ubuntu_linux 7.04 I386
  • Ubuntu ubuntu_linux 7.04 Powerpc
  • Ubuntu ubuntu_linux 7.04 Sparc

References

  • BugTraq: 24837
  • CVE: CVE-2007-3670
  • URL: http://securitytracker.com/alerts/2007/Jul/1018351.html

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out