Author Topic: Multiple Vendor Web Browser FTP Client Cross Site Scripting Vulnerability  (Read 2976 times)

0 Members and 1 Guest are viewing this topic.

Offline FreewheelinFrank

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 4871
  • I'm a GNU
    • Don't Surf in the Nude!
Quote
Multiple vendors' web browsers are prone a cross-site scripting vulnerability that arises because the software fails to handle specially crafted files served using the FTP protocol.

Successfully exploiting this issue may allow an attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of an FTP session. This may allow the attacker to perform malicious actions in a user's browser or redirect the user to a malicious site; other attacks are also possible.

http://sunbeltblog.blogspot.com/2008/10/multiple-vendor-web-browser-ftp-client.html
     Bambleweeny 57 sub-meson brain     Don't Surf in the Nude Blog

Offline Eddy

  • Avast Evangelist
  • Maybe Bot
  • ***
  • Posts: 31073
  • Watching (over?) you
    • Malware removal, Biljart and other things.
Totally BS! It is only FF that is vulnarable, and if you check you will see that FF is the (if it comes to security) the worst browser from the big 4 (IE, FF, Opera, Safari)

Offline FreewheelinFrank

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 4871
  • I'm a GNU
    • Don't Surf in the Nude!
Quote
Totally BS! It is only FF that is vulnarable...

Looks like SecurityFocus has it wrong, then. You might want to tell them about it.

Quote
Multiple Vendor Web Browser FTP Client Cross Site Scripting Weakness

Bugtraq ID:    31855
Class:    Design Error
CVE:    CVE-2008-4723
CVE-2008-4724
Remote:    Yes
Local:    No
Published:    Oct 21 2008 12:00AM
Updated:    Nov 04 2008 09:25PM
Credit:    Muris Kurgas
Vulnerable:    Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.1
Microsoft Internet Explorer 7.0
+ Microsoft Windows Vista Ultimate
+ Microsoft Windows Vista Ultimate
+ Microsoft Windows Vista Ultimate
+ Microsoft Windows Vista Home Premium
+ Microsoft Windows Vista Home Premium
+ Microsoft Windows Vista Home Premium
+ Microsoft Windows Vista Home Premium
+ Microsoft Windows Vista Home Premium
+ Microsoft Windows Vista Home Basic
+ Microsoft Windows Vista Home Basic
+ Microsoft Windows Vista Home Basic
+ Microsoft Windows Vista Home Basic
+ Microsoft Windows Vista Home Basic
+ Microsoft Windows Vista Enterprise
+ Microsoft Windows Vista Enterprise
+ Microsoft Windows Vista Enterprise
+ Microsoft Windows Vista Enterprise
+ Microsoft Windows Vista Enterprise
+ Microsoft Windows Vista Business
+ Microsoft Windows Vista Business
+ Microsoft Windows Vista Business
+ Microsoft Windows Vista Business
+ Microsoft Windows Vista Business
+ Microsoft Windows Vista 0
+ Microsoft Windows Vista 0
+ Microsoft Windows Vista 0
+ Microsoft Windows Vista 0
+ Microsoft Windows Vista 0
Google Chrome 0.2.149 30
Apple Safari 3

Quote
...and if you check you will see that FF is the (if it comes to security) the worst browser from the big 4 (IE, FF, Opera, Safari)

If you say so, Eddy.  ::)
     Bambleweeny 57 sub-meson brain     Don't Surf in the Nude Blog

Offline Dwarden

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1793
  • Ideas, that's ocean without borders!
    • Bohemia Interactive
what about Opera?
https://twitter.com/FoltynD , Tech. Community, Online Services & Distribution manager of Bohemia Interactive

Offline FreewheelinFrank

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 4871
  • I'm a GNU
    • Don't Surf in the Nude!
There's no mention of Opera I can see.
     Bambleweeny 57 sub-meson brain     Don't Surf in the Nude Blog

Offline FreewheelinFrank

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 4871
  • I'm a GNU
    • Don't Surf in the Nude!
The CVE references talk about Firefox and Chrome, but the reference in both is to SecurityFocus, who mention Firefox, Internet Explorer 7, Chrome and Safari. There's a proof of concept, so you could try it out in Opera if you really want.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4723
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4724
     Bambleweeny 57 sub-meson brain     Don't Surf in the Nude Blog