Signature Detail
Short Name |
HTTP:STC:MOZILLA:FF-DEL-OBJ-REF |
|---|---|
Severity |
Medium |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Firefox Deleted Object Reference |
Release Date |
2006/10/18 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Firefox Deleted Object Reference
This signature detects attempts to exploit a known vulnerability against Firefox. Attacker can create a malicious Web site containing references to a deleted object, which if accessed by a victim, allows the attacker to gain control of victim's client browser.
Extended Description
Mozilla Firefox is prone to a vulnerability when rendering malformed JavaScript content. An attacker could exploit this issue to cause the browser to fail or potentially execute arbitrary code. Firefox versions 1.5 through to 1.5.0.2 running on Windows and Linux platforms are affected.
Affected Products
- Debian Linux 3.1.0
- Debian Linux 3.1.0 Alpha
- Debian Linux 3.1.0 Amd64
- Debian Linux 3.1.0 Arm
- Debian Linux 3.1.0 Hppa
- Debian Linux 3.1.0 Ia-32
- Debian Linux 3.1.0 Ia-64
- Debian Linux 3.1.0 M68k
- Debian Linux 3.1.0 Mips
- Debian Linux 3.1.0 Mipsel
- Debian Linux 3.1.0 Ppc
- Debian Linux 3.1.0 S/390
- Debian Linux 3.1.0 Sparc
- HP HP-UX B.11.11
- HP HP-UX B.11.23
- HP HP-UX B.11.31
- Mozilla Firefox 1.5.0
- Mozilla Firefox 1.5.0.1
- Mozilla Firefox 1.5.0.2
- Mozilla Firefox 1.5.0 Beta 1
- Mozilla Firefox 1.5.0 Beta 2
References
- BugTraq: 17671
- CVE: CVE-2006-1993