|
|
Mozilla Firefox XPInstall Default Installation File Permission Vulnerability
|
Bugtraq ID:
|
11166
|
|
Class:
|
Design Error
|
|
CVE:
|
CAN-2004-0906
|
|
Remote:
|
No
|
|
Local:
|
Yes
|
|
Published:
|
Sep 13 2004 12:00AM
|
|
Updated:
|
Sep 13 2004 12:00AM
|
|
Credit:
|
Max <spamhole@gmx.at> disclosed this vulnerability.
|
|
Vulnerable:
|
SGI ProPack 3.0
RedHat Linux 9.0 i386
RedHat Linux 7.3 i686
RedHat Linux 7.3 i386
RedHat Linux 7.3
RedHat Fedora Core2
RedHat Fedora Core1
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9 rc
Mozilla Firefox 0.9
Mozilla Browser 1.7.6
+
HP HP-UX B.11.23
+
HP HP-UX B.11.23
+
HP HP-UX B.11.22
+
HP HP-UX B.11.22
+
HP HP-UX B.11.11
+
HP HP-UX B.11.11
+
HP HP-UX B.11.11
+
HP HP-UX B.11.11
+
HP HP-UX B.11.00
+
HP HP-UX B.11.00
+
RedHat Desktop 4.0
+
RedHat Desktop 4.0
+
RedHat Enterprise Linux AS 4
+
RedHat Enterprise Linux AS 4
+
RedHat Enterprise Linux ES 4
+
RedHat Enterprise Linux ES 4
+
RedHat Enterprise Linux WS 4
+
RedHat Enterprise Linux WS 4
+
Turbolinux Home
+
Turbolinux Home
+
Turbolinux Turbolinux 10 F...
+
Turbolinux Turbolinux Desktop 10.0
+
Turbolinux Turbolinux Desktop 10.0
+
Turbolinux Turbolinux Server 10.0
+
Turbolinux Turbolinux Server 10.0
Mozilla Browser 1.7.2
Mozilla Browser 1.7.1
Mozilla Browser 1.7 rc3
Mozilla Browser 1.7
Mozilla Browser 1.4.4
+
RedHat Desktop 3.0
+
RedHat Desktop 3.0
+
RedHat Enterprise Linux AS 3
+
RedHat Enterprise Linux AS 3
+
RedHat Enterprise Linux AS 2.1 IA64
+
RedHat Enterprise Linux AS 2.1 IA64
+
RedHat Enterprise Linux AS 2.1
+
RedHat Enterprise Linux AS 2.1
+
RedHat Enterprise Linux ES 3
+
RedHat Enterprise Linux ES 3
+
RedHat Enterprise Linux ES 2.1 IA64
+
RedHat Enterprise Linux ES 2.1 IA64
+
RedHat Enterprise Linux ES 2.1
+
RedHat Enterprise Linux ES 2.1
+
RedHat Enterprise Linux WS 3
+
RedHat Enterprise Linux WS 3
+
RedHat Enterprise Linux WS 2.1 IA64
+
RedHat Enterprise Linux WS 2.1 IA64
+
RedHat Enterprise Linux WS 2.1
+
RedHat Enterprise Linux WS 2.1
+
RedHat Linux Advanced Work Station 2.1
Conectiva Linux 10.0
Conectiva Linux 9.0
|
|
|
|
Not Vulnerable:
|
Mozilla Firefox Preview Release
Mozilla Browser 1.7.3
+
HP HP-UX B.11.23
+
HP HP-UX B.11.22
+
HP HP-UX B.11.22
+
HP HP-UX B.11.11
+
HP HP-UX B.11.11
+
HP HP-UX B.11.11
+
HP HP-UX B.11.11
+
HP HP-UX B.11.00
+
HP HP-UX B.11.00
+
HP Tru64 5.1 B-2 PK4 (BL25)
+
HP Tru64 5.1 B-2 PK4 (BL25)
+
HP Tru64 5.1 B-2 PK4
+
HP Tru64 5.1 B-2 PK4
+
HP Tru64 5.1 B PK4
+
HP Tru64 5.1 B PK4
+
HP Tru64 5.1 A PK6 (BL24)
+
HP Tru64 5.1 A PK6 (BL24)
+
HP Tru64 5.1 A PK6
+
HP Tru64 5.1 A PK6
|
|
|
