Signature Detail

HTTP: Mozilla Firefox URLBar Null Byte File Remote Code Execution

This signature detects attempts to exploit a known vulnerability against Mozilla Firefox URLBar. A successful attack can lead to memory corruption and arbitrary code execution.

Extended Description

Mozilla Firefox is prone to a remote code-execution vulnerability because it fails to adequately sanitize user-supplied input. Attackers may exploit this issue by enticing victims into visiting a malicious site and followings links with improper file extensions. Successful exploits may allow an attacker to crash the application or execute arbitrary code in the context of the affected application. Other attacks are also possible.

Affected Products

• Debian Linux 4.0
• Debian Linux 4.0 Alpha
• Debian Linux 4.0 Amd64
• Debian Linux 4.0 Arm
• Debian Linux 4.0 Hppa
• Debian Linux 4.0 Ia-32
• Debian Linux 4.0 Ia-64
• Debian Linux 4.0 M68k
• Debian Linux 4.0 Mips
• Debian Linux 4.0 Mipsel
• Debian Linux 4.0 Powerpc
• Debian Linux 4.0 S/390
• Debian Linux 4.0 Sparc
• HP HP-UX B.11.11
• HP HP-UX B.11.23
• Mandriva Corporate Server 3.0.0
• Mandriva Corporate Server 3.0.0 X86 64
• Mandriva Corporate Server 4.0
• Mandriva Corporate Server 4.0.0 X86 64
• Mandriva Linux Mandrake 2007.0
• Mandriva Linux Mandrake 2007.0 X86 64
• Mandriva Linux Mandrake 2007.1
• Mandriva Linux Mandrake 2007.1 X86 64
• Mozilla Camino 0.7.0 .0
• Mozilla Camino 0.8.0
• Mozilla Camino 0.8.3
• Mozilla Camino 0.8.4
• Mozilla Camino 1.0
• Mozilla Camino 1.0.1
• Mozilla Camino 1.0.2
• Mozilla Camino 1.0.3
• Mozilla Camino 1.5
• Mozilla Firefox 0.10.0
• Mozilla Firefox 0.10.1
• Mozilla Firefox 0.8.0
• Mozilla Firefox 0.9.0
• Mozilla Firefox 0.9.0 Rc
• Mozilla Firefox 0.9.1
• Mozilla Firefox 0.9.2
• Mozilla Firefox 0.9.3
• Mozilla Firefox 1.0.0
• Mozilla Firefox 1.0.1
• Mozilla Firefox 1.0.2
• Mozilla Firefox 1.0.3
• Mozilla Firefox 1.0.4
• Mozilla Firefox 1.0.5
• Mozilla Firefox 1.0.6
• Mozilla Firefox 1.0.7
• Mozilla Firefox 1.0.8
• Mozilla Firefox 1.5.0
• Mozilla Firefox 1.5.0.1
• Mozilla Firefox 1.5.0.10
• Mozilla Firefox 1.5.0.11
• Mozilla Firefox 1.5.0 12
• Mozilla Firefox 1.5.0.2
• Mozilla Firefox 1.5.0.3
• Mozilla Firefox 1.5.0.4
• Mozilla Firefox 1.5.0.5
• Mozilla Firefox 1.5.0.6
• Mozilla Firefox 1.5.0.7
• Mozilla Firefox 1.5.0.8
• Mozilla Firefox 1.5.0.9
• Mozilla Firefox 1.5.0 Beta 1
• Mozilla Firefox 1.5.0 Beta 2
• Mozilla Firefox 2.0
• Mozilla Firefox 2.0.0.1
• Mozilla Firefox 2.0.0.2
• Mozilla Firefox 2.0.0.3
• Mozilla Firefox 2.0.0.4
• Mozilla Firefox 2.0 Beta 1
• Mozilla Firefox 2.0 RC2
• Mozilla Firefox 2.0 RC3
• Slackware Linux 11.0
• Slackware Linux 12.0
• Sun Solaris 10 X86
• SuSE Linux 10.0 Ppc
• SuSE Linux 10.0 X86
• SuSE Linux 10.0 X86-64
• SuSE Linux 10.1 Ppc
• SuSE Linux 10.1 X86
• SuSE Linux 10.1 X86-64
• SuSE Linux Desktop 10
• SuSE Linux Personal 10.0.0 OSS
• SuSE Linux Personal 10.1
• SuSE Linux Professional 10.0.0
• SuSE Linux Professional 10.0.0 OSS
• SuSE Linux Professional 10.1
• SuSE Novell Linux Desktop 9.0.0
• SuSE Novell Linux POS 9
• SuSE Open-Enterprise-Server
• SuSE openSUSE 10.2
• SuSE SUSE Linux Enterprise Desktop 10
• SuSE SUSE Linux Enterprise Desktop 10 SP1
• SuSE SUSE Linux Enterprise Server 10
• SuSE SUSE Linux Enterprise Server 10 SP1
• SuSE SUSE Linux Enterprise Server 8
• SuSE SuSE Linux Openexchange Server 4.0.0
• SuSE SUSE LINUX Retail Solution 8.0.0
• SuSE SuSE Linux School Server for i386
• SuSE SuSE Linux Standard Server 8.0.0
• SuSE UnitedLinux 1.0.0
• Ubuntu Ubuntu Linux 6.06 LTS Amd64
• Ubuntu Ubuntu Linux 6.06 LTS I386
• Ubuntu Ubuntu Linux 6.06 LTS Powerpc
• Ubuntu Ubuntu Linux 6.06 LTS Sparc
• Ubuntu Ubuntu Linux 6.10 Amd64
• Ubuntu Ubuntu Linux 6.10 I386
• Ubuntu Ubuntu Linux 6.10 Powerpc
• Ubuntu Ubuntu Linux 6.10 Sparc
• Ubuntu Ubuntu Linux 7.04 Amd64
• Ubuntu Ubuntu Linux 7.04 I386
• Ubuntu Ubuntu Linux 7.04 Powerpc
• Ubuntu Ubuntu Linux 7.04 Sparc

References

• BugTraq: 24447
• CVE: CVE-2007-3285