Signature Detail
Short Name |
HTTP:STC:MOZILLA:NONASCII-LINK |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Mozilla Non-ASCII Character Link Heap Overrun |
Release Date |
2004/09/15 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Mozilla Non-ASCII Character Link Heap Overrun
This signature detects a reference to a URL in an HTML document containing a certain non-ASCII character. A Web site owner can include this character in a link that, when viewed in a Mozilla Web browser, causes a heap overrun on the browser's computer.
Extended Description
Mozilla is prone to a remotely exploitable heap overflow that is exposed when the browser handles non-ASCII characters in URIs. This issue could be exploited by enticing a user to open a hyperlink that references a malicious URI. Successful exploitation will allow execution of arbitrary code in the context of the client user.
Affected Products
- Mozilla Browser 1.7.0
- Mozilla Browser 1.7.0 Rc3
- Mozilla Browser 1.7.1
- Mozilla Browser 1.7.2
- Mozilla Firefox 0.8.0
- Mozilla Firefox 0.9.0
- Mozilla Firefox 0.9.0 Rc
- Mozilla Firefox 0.9.1
- Mozilla Firefox 0.9.2
- Mozilla Firefox 0.9.3
- Mozilla Thunderbird 0.6.0
- Mozilla Thunderbird 0.7.0
- Mozilla Thunderbird 0.7.1
- Mozilla Thunderbird 0.7.2
- Mozilla Thunderbird 0.7.3
- Netscape Navigator 7.0.0
- Netscape Navigator 7.0.2
- Netscape Navigator 7.1.0
- Netscape Navigator 7.2.0
References
- BugTraq: 11169
- CVE: CVE-2004-0902
- URL: http://www.us-cert.gov/cas/techalerts/TA04-261A.html
- URL: http://www.kb.cert.org/vuls/id/125776