CERT-In Advisory CIAD-2007-38
Multiple Vulnerabilities in Mozilla Firefox

Original issue date: July 19, 2007

Severity Rating: High

Systems Affected

• Mozilla Firefox versions prior to 2.0.0.5
• Thunderbird versions prior to 2.0.0.5
  

Overview

Multiple vulnerabilities have been reported in Mozilla Firefox which could be exploited by remote attackers to execute arbitrary command on the affected system and possibly cause denial of service on the affected system.

Description

1. Multiple Vulnerabilities in JavaScript Engine (CVE-2007-3734 , CVE-2007-3735)

Multiple vulnerabilities have been reported in JavaScript engine due to memory corruption error which could be exploited by remote attacker to cause denial of service or possibly execute arbitrary code on the affected system.

2 . Cross Site scripting Vulnerability in Mozilla Firefox (CVE-2007-3736)

Cross site scripting vulnerability has been reported in Mozilla Firefox due to error in addEventListener" and "setTimeout" methods while parsing parameters to it. The methods could be used by remote attacker to inject malicious script into another site's context.

3. Privilege escalation Vulnerability in Mozilla Firefox (CVE-2007-3737)

A vulnerability has been reported in Mozilla Firefox which could be exploited by the remote attacker to execute arbitrary code with chrome privileges by calling an event handler from an element of outside document .

4. " XPCNativeWrapper” Vulnerability in Mozilla Firefox (CVE-2007-3738)

Multiple vulnerabilities have been reported in Mozilla Firefox due to errors in the handling of "XPCNativeWrapper"object. This vulnerability could be exploited by remote attacker via the crafted “XPCNativeWrapper “to execute arbitrary code on the affected system while processing “XPCNativeWrapper"object.

5. Unauthorized access to wyciwyg:// documents (CVE-2007-3656)

A vulnerability has been reported in Mozilla firefox due to an error in same domain policy check while accessing “wyciwyg:// ” documents. This vulnerability could be exploited by remote attackers to steal sensitive data displayed on dynamically generated pages; perform cache poisoning; and execute own code or display own content with URL bar and SSL certificate data of the attacked page.

Solution

Upgrade to Firefox version 2.0.0.5 :
http://www.mozilla.com/en-US/firefox/

Vendor Information

Mozilla Foundation
http://www.mozilla.org

References

Mozilla Foundation Security Advisories http://www.mozilla.org/security/announce/2007/mfsa2007-18.html
http://www.mozilla.org/security/announce/2007/mfsa2007-19.html
http://www.mozilla.org/security/announce/2007/mfsa2007-21.html http://www.mozilla.org/security/announce/2007/mfsa2007-25.html http://www.mozilla.org/security/announce/2007/mfsa2007-24.html

Secunia
http://secunia.com/advisories/26095

FrSirt
http://www.frsirt.com/english/advisories/2007/2564

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information

Phone: +91-11-24368572

Postal address

Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003