U.S. Flag Official website of the Department of Homeland Security

Note: This page is part of the us-cert.gov archive.This document is part of the US-CERT website archive. These documents are no longer updated and may contain outdated information. Links may also no longer function. Please contact info@us-cert.gov if you have any questions about the US-CERT website archive.

TLP:WHITE

Alert (TA06-107A)

Mozilla Products Contain Multiple Vulnerabilities

Original release date: April 17, 2006

Systems Affected

  • Mozilla web browser, email and newsgroup client
  • Mozilla SeaMonkey
  • Firefox web browser
  • Thunderbird email client
  • Mozilla Suite
Any products based on Mozilla components, particularly Gecko may also be affected.

Overview

The Mozilla web browser and derived products contain several vulnerabilities, the most serious of which could allow a remote attacker to execute arbitrary code on an affected system.

Description

Several vulnerabilities have been reported in the Mozilla web browser and derived products. More detailed information is available in the individual vulnerability notes, including:

VU#932734 - Mozilla crypto.generateCRMFRequest() vulnerability

A vulnerability exists in the Mozilla JavaScript routine generateCRMFRequest() that may allow a remote attacker to execute arbitrary code.
(CVE-2006-1728)

VU#968814 - Mozilla JavaScript security bypass vulnerability

Mozilla products fail to properly enforce security restrictions in JavaScript. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code.
(CVE-2006-1726)

VU#179014 - Mozilla CSS integer overflow vulnerability

Mozilla products contain an integer overflow that could allow a remote, unauthenticated attacker to execute arbitrary code.
(CVE-2006-1730)

VU#488774 - Mozilla XBL binding vulnerability

Mozilla products fail to properly restrict access to privileged XBL bindings. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code.
(CVE-2006-1733)

VU#842094 - Mozilla JavaScript cloned parent vulnerability

Mozilla products fail to properly restrict access to a JavaScript functions cloned parent. This vulnerability may allow a remote attacker to execute arbitrary code on a vulnerable system.
(CVE-2006-1734)

VU#813230 - Mozilla products vulnerable to privilege escalation via XBL.method.eval

A vulnerability in the way Mozilla products and derivative programs handle certain XBL methods could allow a remote attacker to execute arbitrary code on a vulnerable system.
(CVE-2006-1735)

VU#736934 - Mozilla products vulnerable to memory corruption via a particular sequence of HTML tags

A vulnerability in the way Mozilla products and derivative programs handle certain HTML tags could allow a remote attacker to execute arbitrary code on a vulnerable system.
(CVE-2006-0749)

VU#935556 - Mozilla products may allow CSS border-rendering code to write past the end of an array

A vulnerability in the way Mozilla products and derivative programs handle certain CSS methods could allow a remote attacker to crash the application or execute arbitrary code on a vulnerable system.
(CVE-2006-1739)

VU#350262 - Mozilla DHTML memory corruption vulnerabilities

Mozilla products contain to multiple, unspecified vulnerabilities in the way they handle DHTML. These vulnerabilities may allow a remote attacker to execute arbitrary code or cause a denial-of-service condition.
(CVE-2006-1724)

VU#252324 - Mozilla display style vulnerability

Mozilla products contain an unspecified vulnerability in the way they handle display styles. This vulnerability may allow a remote attacker to execute arbitrary code or cause a denial-of-service condition.

VU#329500 - Mozilla products vulnerable to memory corruption via large regular expression in JavaScript

A vulnerability in the way the JavaScript engine of Mozilla products and derivative programs handles a large regular expression could allow a remote attacker to crash the application or execute arbitrary code on a vulnerable system.

Impact

The most severe impact of these vulnerabilities could allow a remote attacker to execute arbitrary code with the privileges of the user running the affected application. Other effects include a denial of service or local information disclosure.

Solution

Upgrade

Upgrade to Mozilla Firefox 1.5.0.2, Mozilla Thunderbird 1.5.0.2, or SeaMonkey 1.0.1. According to Mozilla.org, Thunderbird 1.5.0.2 is to be released on April 18, 2006.

Users are strongly encourages to apply the workarounds described in the individual vulnerability notes until updates can be applied.

Appendix A. References


Feedback can be directed to the US-CERT Technical Staff

Produced by US-CERT, a government organization. Terms of use

Revision History

  • April 17, 2006: Initial release

    Last updated

This product is provided subject to this Notification and this Privacy & Use policy.

Was this document helpful?  Yes  |  Somewhat  |  No

Back to Top