SillyDog701

by **J-M** » Sun 07 Nov, 2004 4:32 pm

DJGM wrote:Why is this problem being classed as a security vulnerability? TBH, I would class this particular bug as "an annoyance", rather than a security hole.

I agree with you partly, bug report #162134 is classified to Plug-ins category, not Security. In addition, it is not classified to 'security-sensitive' although fixing of this issue is unfinished. There are security connection points and Secunia wanted to publish it after discussion published on BugTraq mailing list. Maybe that is the point.
Today, "only serious crash and dataloss issues will be considered blockers for 1.0" according to Firefox developer Ben Goodger's blog http://blog.ebrahim.org/archives/2004/1 ... nation.php

UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.3) Gecko/20040919 Firefox/0.10.1

by **J-M** » Sun 07 Nov, 2004 4:45 pm

Another point of view:
It is always very important that there are workarounds available to issues like this and people know about them. A very practical solution is disabling Java and it was reported to Secunia on 27th August by me. :wink:

UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.3) Gecko/20040919 Firefox/0.10.1

by **Antony** » Sun 07 Nov, 2004 6:53 pm

The Java applets from one tab being displayed on another tab page is not that serious to me. It just reminds me the old Layer not covering the form elements and Java applets back in old Communicator days.

What I mean is...

We all know that Netscape Communicator supports [tt]<layer>[/tt] and [tt]<div>[/tt] tags for positioning elements. If you have form elements (e.g. drop-down menu, input box) and Java applets on layer 1, and you have layer 2 on top of layer 1 (overlapping). The form elements and Java applets would also appear on layer 2 (not covered).

(The workaround was to hide or clip layer 1.)

UserAgent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en) AppleWebKit/125.5 (KHTML, like Gecko) Safari/125.9

by **J-M** » Tue 23 Nov, 2004 5:38 pm

Is there anything new with this issue, according to my knowledge the newest Java implementation is 1.4.2 Update 2; http://www.apple.com/support/downloads/ ... te142.html

Sun has released it's own JRE 1.4.2_06 update, look at these advisories published on 23rd November:
http://secunia.com/advisories/13271/
http://www.kb.cert.org/vuls/id/760344

UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fi-FI; rv:1.7.5) Gecko/20041108 Firefox/1.0

by **J-M** » Tue 30 Nov, 2004 2:35 pm

Experiences from Mac OS users, with different Java versions are more than welcome now.

Especially issues tested with Firefox 1.0.

UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fi-FI; rv:1.7.5) Gecko/20041108 Firefox/1.0

by **J-M** » Thu 24 Feb, 2005 1:46 pm

How about after upgrading to new OS X Java related security release, discussed in this thread
http://sillydog.org/forum/viewtopic.php?t=8382

at Mac OS and Linux section.

According to Secunia both Netscape and Firefox issues are related "to a known behaviour in Apple's implementation of Java".

Their advisory of Netscape, and Firefox, is marked as unpatched, naturally.

See details:

Netscape Apple Java Plugin Tab Spoofing Vulnerability
http://secunia.com/advisories/12392/

Mozilla / Mozilla Firefox Apple Java Plugin Tab Spoofing Vulnerability
http://secunia.com/advisories/12403/

[edited by j-m: added Firefox SA as unpatched too]

UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fi-FI; rv:1.7.5) Gecko/20041108 Firefox/1.0

by **J-M** » Thu 24 Feb, 2005 2:02 pm

This 'old' Radar site from August is still available:

http://www.securitywizardry.com/radar.htm .

It can be used to test this issue.
(I remember several _very_ short nights when this thread was opened at summer

).
However, there is some RealPlayer related problems mentioned too at http://bugzilla.mozilla.org/show_bug.cgi?id=162134 .
This Bugzilla report is Secunia's Bugzilla reference link too.

UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fi-FI; rv:1.7.5) Gecko/20041108 Firefox/1.0

by **Antony** » Thu 24 Feb, 2005 8:48 pm

J-M wrote:How about after upgrading to new OS X Java related security release, discussed in this thread
http://sillydog.org/forum/viewtopic.php?t=8382

at Mac OS and Linux section.

Same story. The Java applets from one tab is still displayed in another Tab in Netscape 7.2 after the new OS X security update.

UserAgent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en) AppleWebKit/125.5.6 (KHTML, like Gecko) Safari/125.12

by **J-M** » Fri 10 Jun, 2005 4:57 pm

Now, in June, this is still marked as unpatched at http://www.securityfocus.com/bid/11059/info , http://secunia.com/advisories/12392/ and http://secunia.com/advisories/12403/ .

Mac OS users, do you have any new experiences?

UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fi-FI; rv:1.7.7) Gecko/20050414 Firefox/1.0.3

SillyDog701

Java Tab Spoofing Vulnerability in NS7.2 using Mac OS X 10.x

Computer Network Defence Operational Picture

Who is online