|
|
Mozilla/Firefox Browsers URI Drag And Drop Cross-Domain Scripting Vulnerability
|
Bugtraq ID:
|
11177
|
|
Class:
|
Access Validation Error
|
|
CVE:
|
CAN-2004-0905
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Sep 14 2004 12:00AM
|
|
Updated:
|
Sep 14 2004 12:00AM
|
|
Credit:
|
Discovery of this vulnerability is credited to Jesse Ruderman <jruderman@gmail.com>.
|
|
Vulnerable:
|
S.u.S.E. Linux Personal 9.1
S.u.S.E. Linux Personal 9.0 x86_64
S.u.S.E. Linux Personal 9.0
S.u.S.E. Linux Personal 8.2
S.u.S.E. Linux Enterprise Server 9
S.u.S.E. Linux Enterprise Server 8
S.u.S.E. Linux Desktop 1.0
S.u.S.E. Linux 8.1
RedHat Linux 9.0 i386
RedHat Linux 7.3 i686
RedHat Linux 7.3 i386
RedHat Linux 7.3
RedHat Fedora Core1
RedHat Enterprise Linux WS 3
RedHat Enterprise Linux WS 2.1 IA64
RedHat Enterprise Linux WS 2.1
RedHat Enterprise Linux ES 3
RedHat Enterprise Linux ES 2.1 IA64
RedHat Enterprise Linux ES 2.1
RedHat Enterprise Linux AS 3
RedHat Enterprise Linux AS 2.1 IA64
RedHat Enterprise Linux AS 2.1
RedHat Desktop 3.0
RedHat Advanced Workstation for the Itanium Processor 2.1 IA64
RedHat Advanced Workstation for the Itanium Processor 2.1
Netscape Navigator 7.2
Netscape Navigator 7.1
Netscape Navigator 7.0.2
Netscape Navigator 7.0
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9 rc
Mozilla Firefox 0.9
Mozilla Firefox 0.8
Mozilla Browser 1.7.2
Mozilla Browser 1.7.1
Mozilla Browser 1.7 rc3
Mozilla Browser 1.7
Mozilla Browser 1.6
Mozilla Browser 1.5
Mozilla Browser 1.4.2
Mozilla Browser 1.4.1
Mozilla Browser 1.4 b
Mozilla Browser 1.4 a
Mozilla Browser 1.4
+
MandrakeSoft Linux Mandrake 9.2 amd64
+
MandrakeSoft Linux Mandrake 9.2
Mozilla Browser 1.3.1
Mozilla Browser 1.3
Mozilla Browser 1.2.1
Mozilla Browser 1.2 Beta
Mozilla Browser 1.2 Alpha
Mozilla Browser 1.2
Mozilla Browser 1.1 Beta
Mozilla Browser 1.1 Alpha
Mozilla Browser 1.1
Mozilla Browser 1.0.2
+
RedHat Advanced Workstation for the Itanium Processor 2.1
+
RedHat Advanced Workstation for the Itanium Processor 2.1
+
RedHat Enterprise Linux AS 2.1 IA64
+
RedHat Enterprise Linux AS 2.1 IA64
+
RedHat Enterprise Linux AS 2.1
+
RedHat Enterprise Linux AS 2.1
+
RedHat Enterprise Linux ES 2.1 IA64
+
RedHat Enterprise Linux ES 2.1 IA64
+
RedHat Enterprise Linux ES 2.1
+
RedHat Enterprise Linux ES 2.1
+
RedHat Enterprise Linux WS 2.1 IA64
+
RedHat Enterprise Linux WS 2.1 IA64
+
RedHat Enterprise Linux WS 2.1
+
RedHat Enterprise Linux WS 2.1
+
Sun Linux 5.0.7
Mozilla Browser 1.0.1
Mozilla Browser 1.0 RC2
+
Conectiva Linux 8.0
+
Conectiva Linux 7.0
+
Conectiva Linux 6.0
Mozilla Browser 1.0 RC1
-
FreeBSD FreeBSD 4.5
-
FreeBSD FreeBSD 4.4
-
FreeBSD FreeBSD 4.3
-
FreeBSD FreeBSD 4.2
-
FreeBSD FreeBSD 4.1.1
Mozilla Browser 1.0
+
MandrakeSoft Linux Mandrake 8.2 ppc
+
MandrakeSoft Linux Mandrake 8.2
+
RedHat Linux 8.0 i386
+
RedHat Linux 8.0
Conectiva Linux 10.0
Conectiva Linux 9.0
|
|
|
|
Not Vulnerable:
|
Mozilla Firefox 0.10
Mozilla Browser 1.7.3
+
HP HP-UX B.11.23
+
HP HP-UX B.11.22
+
HP HP-UX B.11.22
+
HP HP-UX B.11.11
+
HP HP-UX B.11.11
+
HP HP-UX B.11.11
+
HP HP-UX B.11.11
+
HP HP-UX B.11.00
+
HP HP-UX B.11.00
+
HP Tru64 5.1 B-2 PK4 (BL25)
+
HP Tru64 5.1 B-2 PK4 (BL25)
+
HP Tru64 5.1 B-2 PK4
+
HP Tru64 5.1 B-2 PK4
+
HP Tru64 5.1 B PK4
+
HP Tru64 5.1 B PK4
+
HP Tru64 5.1 A PK6 (BL24)
+
HP Tru64 5.1 A PK6 (BL24)
+
HP Tru64 5.1 A PK6
+
HP Tru64 5.1 A PK6
|
|
|
