Signature Detail

HTTP: Mozilla Firefox Shortcut Processing Information Disclosure

This signature detects attempts to exploit a known vulnerability against Mozilla Firefox. A successful attack can result in a information disclosure.

Extended Description

Mozilla Firefox is prone to an information-disclosure vulnerability when processing '.url' shortcut files in HTML elements. An attacker can exploit the issue to obtain sensitive information such as browser cache files, cookie data, or local filesystem details. Information harvested may aid in further attacks. NOTE: To exploit this issue, the attacker must trick a victim into saving a malicious HTML file to the local system and then following a malicious URI. Mozilla Firefox 3.0.1, 3.0.2, and 3.0.3 are reported vulnerable.

Affected Products

• Avaya Interactive Response 4.0
• Debian Iceweasel
• Debian Linux 4.0
• Debian Linux 4.0 Alpha
• Debian Linux 4.0 Amd64
• Debian Linux 4.0 Arm
• Debian Linux 4.0 Hppa
• Debian Linux 4.0 Ia-32
• Debian Linux 4.0 Ia-64
• Debian Linux 4.0 M68k
• Debian Linux 4.0 Mips
• Debian Linux 4.0 Mipsel
• Debian Linux 4.0 Powerpc
• Debian Linux 4.0 S/390
• Debian Linux 4.0 Sparc
• Debian Xulrunner
• Mozilla Firefox 2.0.0.1
• Mozilla Firefox 2.0.0.10
• Mozilla Firefox 2.0.0.11
• Mozilla Firefox 2.0.0.12
• Mozilla Firefox 2.0.0.13
• Mozilla Firefox 2.0.0.14
• Mozilla Firefox 2.0.0.15
• Mozilla Firefox 2.0.0.16
• Mozilla Firefox 2.0.0.17
• Mozilla Firefox 2.0.0.2
• Mozilla Firefox 2.0.0.3
• Mozilla Firefox 2.0.0.4
• Mozilla Firefox 2.0.0.5
• Mozilla Firefox 2.0.0.6
• Mozilla Firefox 2.0.0.7
• Mozilla Firefox 2.0.0.8
• Mozilla Firefox 2.0.0.9
• Mozilla Firefox 3.0.1
• Mozilla Firefox 3.0.2
• Mozilla Firefox 3.0.3
• Mozilla SeaMonkey 1.0
• Mozilla SeaMonkey 1.0.1
• Mozilla SeaMonkey 1.0.2
• Mozilla SeaMonkey 1.0.3
• Mozilla SeaMonkey 1.0.5
• Mozilla SeaMonkey 1.0.6
• Mozilla SeaMonkey 1.0.7
• Mozilla SeaMonkey 1.0.8
• Mozilla SeaMonkey 1.0.9
• Mozilla SeaMonkey 1.0.99
• Mozilla SeaMonkey 1.0 Dev
• Mozilla SeaMonkey 1.1.1
• Mozilla SeaMonkey 1.1.10
• Mozilla SeaMonkey 1.1.11
• Mozilla SeaMonkey 1.1.12
• Mozilla SeaMonkey 1.1.2
• Mozilla SeaMonkey 1.1.3
• Mozilla SeaMonkey 1.1.4
• Mozilla SeaMonkey 1.1.5
• Mozilla SeaMonkey 1.1.6
• Mozilla SeaMonkey 1.1.7
• Mozilla SeaMonkey 1.1.8
• Mozilla SeaMonkey 1.1.9
• Mozilla SeaMonkey 1.1 Beta
• Nortel Networks Self-Service - CCSS7
• Nortel Networks Self-Service MPS 1000
• Nortel Networks Self-Service Peri Application
• Nortel Networks Self-Service Peri Workstation
• Red Hat Fedora 8
• Red Hat Fedora 9
• Slackware Linux 10.2.0
• Slackware Linux 11.0
• Slackware Linux 12.0
• Slackware Linux 12.1
• Slackware Linux -Current
• Sun OpenSolaris Build Snv 89
• Sun OpenSolaris Build Snv 90
• Sun OpenSolaris Build Snv 91
• Sun OpenSolaris Build Snv 92
• Sun OpenSolaris Build Snv 93
• Sun OpenSolaris Build Snv 94
• Sun Solaris 10 Sparc
• Sun Solaris 10 X86
• Ubuntu Ubuntu Linux 6.06 LTS Amd64
• Ubuntu Ubuntu Linux 6.06 LTS I386
• Ubuntu Ubuntu Linux 6.06 LTS Powerpc
• Ubuntu Ubuntu Linux 6.06 LTS Sparc
• Ubuntu Ubuntu Linux 7.10 Amd64
• Ubuntu Ubuntu Linux 7.10 I386
• Ubuntu Ubuntu Linux 7.10 Lpia
• Ubuntu Ubuntu Linux 7.10 Powerpc
• Ubuntu Ubuntu Linux 7.10 Sparc
• Ubuntu Ubuntu Linux 8.04 LTS Amd64
• Ubuntu Ubuntu Linux 8.04 LTS I386
• Ubuntu Ubuntu Linux 8.04 LTS Lpia
• Ubuntu Ubuntu Linux 8.04 LTS Powerpc
• Ubuntu Ubuntu Linux 8.04 LTS Sparc
• Ubuntu Ubuntu Linux 8.10 Amd64
• Ubuntu Ubuntu Linux 8.10 I386
• Ubuntu Ubuntu Linux 8.10 Lpia
• Ubuntu Ubuntu Linux 8.10 Powerpc
• Ubuntu Ubuntu Linux 8.10 Sparc

References

• BugTraq: 31747
• CVE: CVE-2008-4582