CVE-2004-0909
CVSS5.1
发布时间 :2004-12-31 00:00:00
修订时间 :2016-10-17 22:49:55
NMCOS    

[原文]Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 may allow remote attackers to trick users into performing unexpected actions, including installing software, via signed scripts that request enhanced abilities using the enablePrivilege parameter, then modify the meaning of certain security-relevant dialog messages.


[CNNVD]Mozilla/Firefox浏览器特权管理员EnablePrivilege对话操作漏洞(CNNVD-200412-666)

        Mozilla Firefox Preview Release之前版本,Mozilla 1.7.3之前版本,以及Thunderbird 0.8之前版本存在漏洞。远程攻击者借助需要使用enablePrivilege参数的加强能力的已签署脚本,欺骗用户去执行意外行为,包括安装软件,然后修改某些有关安全的对话消息的涵义。

- CVSS (基础分值)

CVSS分值: 5.1 [中等(MEDIUM)]
机密性影响: [--]
完整性影响: [--]
可用性影响: [--]
攻击复杂度: [--]
攻击向量: [--]
身份认证: [--]

- CPE (受影响的平台与产品)

cpe:/a:mozilla:mozilla:1.7.1Mozilla Mozilla 1.7.1
cpe:/a:mozilla:mozilla:1.7.2Mozilla Mozilla 1.7.2
cpe:/a:mozilla:mozilla:1.2:alphaMozilla Mozilla Browser 1.2 Alpha
cpe:/a:mozilla:mozilla:1.7:alphaMozilla Mozilla 1.7 alpha
cpe:/a:mozilla:mozilla:1.4:alphaMozilla Mozilla 1.4a
cpe:/a:mozilla:mozilla:1.1:alphaMozilla Mozilla Browser 1.1 Alpha
cpe:/a:mozilla:mozilla:1.4:betaMozilla Mozilla Browser 1.4b
cpe:/a:mozilla:mozilla:1.1:betaMozilla Mozilla Browser 1.1 Beta
cpe:/a:mozilla:mozilla:0.9.2Mozilla Mozilla Browser 0.9.2
cpe:/a:mozilla:thunderbird:0.7.2Mozilla Thunderbird 0.7.2
cpe:/a:mozilla:mozilla:1.2:betaMozilla Mozilla Browser 1.2 Beta
cpe:/a:mozilla:mozilla:1.7:betaMozilla Mozilla 1.7 beta
cpe:/a:mozilla:mozilla:0.9.48Mozilla Mozilla Browser 0.9.48
cpe:/a:mozilla:thunderbird:0.7.1Mozilla Thunderbird 0.7.1
cpe:/a:mozilla:mozilla:0.9.9Mozilla Mozilla 0.9.9
cpe:/a:mozilla:mozilla:0.8Mozilla Mozilla Browser 0.8
cpe:/a:mozilla:mozilla:0.9.7Mozilla Mozilla 0.9.7
cpe:/a:mozilla:mozilla:0.9.8Mozilla Mozilla Browser 0.9.8
cpe:/a:mozilla:mozilla:1.2.1Mozilla Mozilla Browser 1.2.1
cpe:/a:mozilla:mozilla:1.4.1Mozilla Mozilla 1.4.1
cpe:/a:mozilla:mozilla:1.4.2Mozilla Mozilla Browser 1.4.2
cpe:/a:mozilla:mozilla:0.9.5Mozilla Mozilla Browser 0.9.5
cpe:/a:mozilla:mozilla:0.9.6Mozilla Mozilla Browser 0.9.6
cpe:/a:mozilla:mozilla:0.9.3Mozilla Mozilla Browser 0.9.3
cpe:/a:mozilla:mozilla:1.0.1Mozilla Mozilla Browser 1.0.1
cpe:/a:mozilla:mozilla:0.9.4Mozilla Mozilla Browser 0.9.4
cpe:/a:mozilla:mozilla:1.0.2Mozilla Mozilla Browser 1.0.2
cpe:/a:mozilla:mozilla:0.9.4.1Mozilla Mozilla Browser 0.9.4.1
cpe:/a:mozilla:mozilla:1.4.4Mozilla Mozilla Browser 1.4.4
cpe:/a:mozilla:mozilla:0.9.2.1Mozilla Mozilla Browser 0.9.2.1
cpe:/a:mozilla:mozilla:1.7:rc3Mozilla Mozilla 1.7 rc3
cpe:/a:mozilla:mozilla:1.7:rc2Mozilla Mozilla 1.7 rc2
cpe:/a:mozilla:mozilla:1.7:rc1Mozilla Mozilla 1.7 rc1
cpe:/a:mozilla:thunderbird:0.1Mozilla Thunderbird 0.1
cpe:/a:mozilla:thunderbird:0.4Mozilla Thunderbird 0.4
cpe:/a:mozilla:thunderbird:0.2Mozilla Thunderbird 0.2
cpe:/a:mozilla:thunderbird:0.5Mozilla Thunderbird 0.5
cpe:/a:mozilla:mozilla:1.0:rc1
cpe:/a:mozilla:thunderbird:0.3Mozilla Thunderbird 0.3
cpe:/a:mozilla:thunderbird:0.6Mozilla Thunderbird 0.6
cpe:/a:mozilla:mozilla:1.0:rc2
cpe:/a:mozilla:thunderbird:0.7Mozilla Thunderbird 0.7
cpe:/a:mozilla:mozilla:1.7Mozilla Mozilla 1.7
cpe:/a:mozilla:mozilla:1.6Mozilla Mozilla 1.6
cpe:/a:mozilla:mozilla:1.5Mozilla Mozilla 1.5
cpe:/a:mozilla:mozilla:1.4Mozilla Mozilla 1.4
cpe:/a:mozilla:mozilla:1.3Mozilla Mozilla 1.3
cpe:/a:mozilla:mozilla:1.2Mozilla Mozilla 1.2
cpe:/a:mozilla:mozilla:1.1Mozilla Mozilla 1.1
cpe:/a:mozilla:mozilla:1.0Mozilla Mozilla 1.0
cpe:/a:mozilla:mozilla:1.3.1Mozilla Mozilla Browser 1.3.1
cpe:/a:mozilla:mozilla:1.5.1Mozilla Mozilla 1.5.1
cpe:/a:mozilla:mozilla:0.9.35Mozilla Mozilla Browser 0.9.35

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0909
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-0909
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200412-666
(官方数据源) CNNVD

- 其它链接及资源

http://bugzilla.mozilla.org/show_bug.cgi?id=253942
(UNKNOWN)  CONFIRM  http://bugzilla.mozilla.org/show_bug.cgi?id=253942
http://marc.info/?l=bugtraq&m=109698896104418&w=2
(UNKNOWN)  HP  SSRT4826
http://security.gentoo.org/glsa/glsa-200409-26.xml
(UNKNOWN)  GENTOO  GLSA-200409-26
http://www.kb.cert.org/vuls/id/113192
(VENDOR_ADVISORY)  CERT-VN  VU#113192
http://www.mozilla.org/projects/security/known-vulnerabilities.html#mozilla1.7.3
(UNKNOWN)  CONFIRM  http://www.mozilla.org/projects/security/known-vulnerabilities.html#mozilla1.7.3
http://www.novell.com/linux/security/advisories/2004_36_mozilla.html
(VENDOR_ADVISORY)  SUSE  SUSE-SA:2004:036
http://xforce.iss.net/xforce/xfdb/17377
(UNKNOWN)  XF  mozilla-enableprivilege-modify-dialog(17377)

- 漏洞信息

Mozilla/Firefox浏览器特权管理员EnablePrivilege对话操作漏洞
中危 设计错误
2004-12-31 00:00:00 2005-10-20 00:00:00
远程  
        Mozilla Firefox Preview Release之前版本,Mozilla 1.7.3之前版本,以及Thunderbird 0.8之前版本存在漏洞。远程攻击者借助需要使用enablePrivilege参数的加强能力的已签署脚本,欺骗用户去执行意外行为,包括安装软件,然后修改某些有关安全的对话消息的涵义。

- 公告与补丁

        This issue is addressed in Mozilla 1.7.3 and Firefox Preview Release:
        Conectiva has released an advisory (CLA-2004:877) to address various issues including this issue in Mozilla. This advisory contains updated Mozilla packages (1.7.3) for Conectiva Linux 9 and 10. Please see the referenced advisory for more information.
        Gentoo has released an advisory (GLSA 200409-26) to address various issues in Mozilla Browsers. Please see the referenced advisory for more information. Gentoo users may carry out the following commands to update their systems.
        emerge sync
        emerge -pv your-version
        emerge your-version
        For more information please see the referenced Gentoo Linux advisory.
        HP has released an advisory (SSRT4826) dealing with this issue for their Tru64 UNIX platform. Please see the referenced advisory for more information.
        SuSE Linux has released advisory SUSE-SA:2004:036 along with fixes dealing with this issue. Please see the referenced advisory for more information.
        Mozilla Firefox 0.9 rc
        
        Mozilla Firefox 0.9
        
        Mozilla Firefox 0.9.1
        
        Mozilla Firefox 0.9.2
        
        Mozilla Firefox 0.9.3
        
        Mozilla Browser 1.7
        
        Mozilla Browser 1.7 rc3
        
        Mozilla Browser 1.7.1
        
        Mozilla Browser 1.7.2
        

- 漏洞信息

10558
Mozilla Multiple Products Signed Script Dialog Modification

- 漏洞描述

Unknown or Incomplete

- 时间线

2004-09-14 Unknow
Unknow Unknow

- 解决方案

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Mozilla/Firefox Browsers PrivilegeManager EnablePrivilege Dialog Manipulation Vulnerability
Design Error 11194
Yes No
2004-09-15 12:00:00 2009-07-12 07:06:00
Discovery of this vulnerability is credited to Jesse Ruderman <jruderman@gmail.com>.

- 受影响的程序版本

SuSE SUSE Linux Enterprise Server 8
+ Linux kernel 2.4.21
+ Linux kernel 2.4.19
S.u.S.E. Linux Personal 9.1
S.u.S.E. Linux Personal 9.0 x86_64
S.u.S.E. Linux Personal 9.0
S.u.S.E. Linux Personal 8.2
S.u.S.E. Linux Enterprise Server 9
S.u.S.E. Linux Desktop 1.0
S.u.S.E. Linux 8.1
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9 rc
Mozilla Firefox 0.9
Mozilla Browser 1.7.2
Mozilla Browser 1.7.1
Mozilla Browser 1.7 rc3
Mozilla Browser 1.7
Conectiva Linux 10.0
Conectiva Linux 9.0
Mozilla Firefox Preview Release
Mozilla Browser 1.7.3
+ HP HP-UX B.11.23
+ HP HP-UX B.11.22
+ HP HP-UX B.11.22
+ HP HP-UX B.11.11
+ HP HP-UX B.11.11
+ HP HP-UX B.11.11
+ HP HP-UX B.11.11
+ HP HP-UX B.11.00
+ HP HP-UX B.11.00
+ HP Tru64 5.1 B-2 PK4 (BL25)
+ HP Tru64 5.1 B-2 PK4 (BL25)
+ HP Tru64 5.1 B-2 PK4
+ HP Tru64 5.1 B-2 PK4
+ HP Tru64 5.1 B PK4
+ HP Tru64 5.1 B PK4
+ HP Tru64 5.1 A PK6 (BL24)
+ HP Tru64 5.1 A PK6 (BL24)
+ HP Tru64 5.1 A PK6
+ HP Tru64 5.1 A PK6

- 不受影响的程序版本

Mozilla Firefox Preview Release
Mozilla Browser 1.7.3
+ HP HP-UX B.11.23
+ HP HP-UX B.11.22
+ HP HP-UX B.11.22
+ HP HP-UX B.11.11
+ HP HP-UX B.11.11
+ HP HP-UX B.11.11
+ HP HP-UX B.11.11
+ HP HP-UX B.11.00
+ HP HP-UX B.11.00
+ HP Tru64 5.1 B-2 PK4 (BL25)
+ HP Tru64 5.1 B-2 PK4 (BL25)
+ HP Tru64 5.1 B-2 PK4
+ HP Tru64 5.1 B-2 PK4
+ HP Tru64 5.1 B PK4
+ HP Tru64 5.1 B PK4
+ HP Tru64 5.1 A PK6 (BL24)
+ HP Tru64 5.1 A PK6 (BL24)
+ HP Tru64 5.1 A PK6
+ HP Tru64 5.1 A PK6

- 漏洞讨论

A vulnerability is reported in the Mozilla 'enablePrivilege' method. Because the argument data of a 'enablePrivilege' method is used as text in a prompt dialog if the user has not accessed the principal previously, it is possible to manipulate dialog contents.

A remote attacker may exploit this condition to influence a victim user into permitting a malicious script to run.

- 漏洞利用

A proof of concept is available at the following location:

http://bugzilla.mozilla.org/attachment.cgi?id=154932&amp;action=view

- 解决方案

This issue is addressed in Mozilla 1.7.3 and Firefox Preview Release:

Conectiva has released an advisory (CLA-2004:877) to address various issues including this issue in Mozilla. This advisory contains updated Mozilla packages (1.7.3) for Conectiva Linux 9 and 10. Please see the referenced advisory for more information.

Gentoo has released an advisory (GLSA 200409-26) to address various issues in Mozilla Browsers. Please see the referenced advisory for more information. Gentoo users may carry out the following commands to update their systems.

emerge sync
emerge -pv your-version
emerge your-version

For more information please see the referenced Gentoo Linux advisory.

HP has released an advisory (SSRT4826) dealing with this issue for their Tru64 UNIX platform. Please see the referenced advisory for more information.

SuSE Linux has released advisory SUSE-SA:2004:036 along with fixes dealing with this issue. Please see the referenced advisory for more information.


Mozilla Firefox 0.9 rc

Mozilla Firefox 0.9

Mozilla Firefox 0.9.1

Mozilla Firefox 0.9.2

Mozilla Firefox 0.9.3

Mozilla Browser 1.7

Mozilla Browser 1.7 rc3

Mozilla Browser 1.7.1

Mozilla Browser 1.7.2

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站