SillyDog701

Message Centre 3.0

Skip to content

"Host:" Parameter Remote Buffer Overflow Vuln

Firefox, Thunderbird, SeaMonkey, Camino, Mozilla, Netscape 6/7/8/9, and all Gecko-based browsers discussion and support forum.
(MozInfo701, Netscape Browser Archive)

Moderators: Antony, Edward, profman, Ramona

Post a reply

Postby Fulvio » Wed 14 Sep, 2005 10:16 am

Thanks,
I am using the firesomething extention, which changes the UA.
I really did not know if I had an activeX plugin, until I checked the plugins folder, and did the test. And, the active.js file has the correct info.
At this point, I am at the "so what?" stage, and I am satified at what I see.
UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.10) Gecko/20050716 (No IDN) Powerstar/1.0.6
A minority may be right, and a majority is always wrong
~ Henrik Ibsen
WinXP, SP3, 512 MB, SM2.9.1, FF12, TB12.0.1, IE8.0, Google Chrome18, Ghostwall , Avast 7.x, JRE1.7_04. Testing FF13b4
User avatar
Fulvio
Moderator
Moderator
 
Posts: 11916
Joined: Wed 19 Jun, 2002 10:08 am
Top

Postby J-M » Wed 14 Sep, 2005 6:52 pm

Alice wrote:
J-M wrote:The recent version of Mozilla Foundation security advisory from Mozilla Update site (advisory link now redirects to https://addons.mozilla.org/messages/307259.html

That's the url where I found the 307259.xpi download link (from my 09-10-2005 notes).

By the way, in case anyone else was wondering, 307259 refers to the bugzilla bug report number:
https://bugzilla.mozilla.org/show_bug.cgi?id=307259


In fact, I mentioned it while researching the effect of 307259.xpi file on 10th September :wink: :

Testing 307259.xpi package (yes, it's Bugzilla number too) now.
UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fi-FI; rv:1.7.10) Gecko/20050717 (No IDN) Firefox/1.0.6
User avatar
J-M
diamond member
diamond member
 
Posts: 815
Joined: Sun 25 Jul, 2004 9:16 am
Location: Helsinki, Finland
Top

Postby Alice » Wed 14 Sep, 2005 7:05 pm

J-M wrote:
Alice wrote: By the way, in case anyone else was wondering, 307259 refers to the bugzilla bug report number:
https://bugzilla.mozilla.org/show_bug.cgi?id=307259


In fact, I mentioned it while researching the effect of 307259.xpi file on 10th September :wink: :

Testing 307259.xpi package (yes, it's Bugzilla number too) now.


Yep, I saw that after I posted... but at least I gave a clickable link :)
UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.11) Gecko/20050728 (No IDN)
User avatar
Alice
Mozilla Champion
Mozilla Champion
 
Posts: 1790
Joined: Sun 21 Jul, 2002 8:57 am
Top

Postby J-M » Fri 16 Sep, 2005 8:25 pm

A new @RISK The Consensus Security Vulnerability Alert newsletter (Volume 4, No. 37) from Sans.org says:

(1) CRITICAL: Gecko based browsers IDN URI Domain Name Buffer Overflow

Status: Mozilla Foundation has issued a patch and also has a quick fix by manually configuring the browser to disable IDN.

Council Site Actions: The reporting council sites using the affected software plan to distribute the patch during their next regularly scheduled system update process or remove Netscape 7.x from their desktops since they recently implemented an ActiveX filtering solution and no longer need an alternate browser on their desktop.


Source:
http://www.sans.org/newsletters/risk/di ... 37#widely1
UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fi-FI; rv:1.7.10) Gecko/20050717 (No IDN) Firefox/1.0.6
User avatar
J-M
diamond member
diamond member
 
Posts: 815
Joined: Sun 25 Jul, 2004 9:16 am
Location: Helsinki, Finland
Top

Postby J-M » Mon 26 Sep, 2005 3:32 pm

Secunia has a separate Netscape warning and its severity level has changed to 'Extremely Critical', 5/5, their highest level used:

http://secunia.com/advisories/16766/

Additionally, they say

Solution:
Use another product.

now.
UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fi-FI; rv:1.7.10) Gecko/20050717 (No IDN) Firefox/1.0.6
User avatar
J-M
diamond member
diamond member
 
Posts: 815
Joined: Sun 25 Jul, 2004 9:16 am
Location: Helsinki, Finland
Top

Postby J-M » Wed 19 Oct, 2005 10:25 am

This was fixed now in new [sdt=10093]Netscape Browser 8.0.4[/sdt].

Link added by Antony
UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fi-FI; rv:1.7.12) Gecko/20050919 Firefox/1.0.7
User avatar
J-M
diamond member
diamond member
 
Posts: 815
Joined: Sun 25 Jul, 2004 9:16 am
Location: Helsinki, Finland
Top

Postby J-M » Wed 19 Oct, 2005 12:12 pm

Confirm advisory from Bugtraq database (Symantec):
http://www.securityfocus.com/bid/14784/info

Not Vulnerable:
Netscape Browser 8.0.4
Mozilla Thunderbird 1.0.7
Mozilla Firefox 1.0.7
Mozilla Browser 1.7.12


http://www.securityfocus.com/bid/14784/solution :

Netscape has released Netscape Browser 8.0.4 to address various security issues.


Thanks for the new NS8.0.4 thread link, Antony.
UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fi-FI; rv:1.7.12) Gecko/20050919 Firefox/1.0.7
User avatar
J-M
diamond member
diamond member
 
Posts: 815
Joined: Sun 25 Jul, 2004 9:16 am
Location: Helsinki, Finland
Top
Previous
Post a reply

Return to Firefox, SeaMonkey and Netscape

Who is online

Registered users: Alexa [Bot], Google [Bot], Google Feedfetcher, Yahoo [Bot]

Powered by phpBB © phpBB Group
Cheap Web Hosting

support SillyDog701
[SillyDog701 home] [Netscape] [download NS] [MozInfo701] [MacCentre701] [Feedback] [Search] [Sitemap]
All messages posted in this forum do not necessarily represent SillyDog701. This forum is operated by Antony Shen. All rights reserved. Copyright Notice. Privacy Statement.		 get FirefoxMade on a Mac