Threat level definition
Search:
Home
Bugtraq
Vulnerabilities
Mailing Lists
Jobs
Tools
Vista
News
Infocus
Foundations
Microsoft
Unix
IDS
Incidents
Virus
Pen-Test
Firewalls
Focus On: Vista
Columnists
Mailing Lists
Newsletters
Bugtraq
Focus on IDS
Focus on Linux
Focus on Microsoft
Forensics
Pen-test
Security Basics
Vuln Dev
Vulnerabilities
Jobs
Job Opportunities
Resumes
Job Seekers
Employers
Tools
RSS
News
Vulns
info
discussion
exploit
solution
references
Microsoft Internet Explorer and Mozilla Firefox URI Handler Command Injection Vulnerability
References:
Mozilla Protocol Abuse
(Thor Larholm)
Thunderbird 1.5 has not been patched with osint
(Thor Larholm)
1.5.1 Release Notes
(Camino)
Cross Browser Scripting 2 (IE pwns Netscape Navigator 9)
(sla.ckers.org)
Internet Explorer 0day Exploit
(Thor Larholm)
Internet Explorer Homepage
(Microsoft)
Mozilla Foundation Security Advisory 2007-23
(Mozilla)
Mozilla Foundation Security Advisory 2007-40
(Mozilla)
Registering an Application to a URL Protocol
(Microsoft)
Security Issue in URL Protocol Handling on Windows
(Mozilla)
Security update for MozillaFirefox SuSE Linux Maintenance Web (07d098f99c9fe6956
(Novell)
Thunderbird 1.5.0.14 Release Notes
(Mozilla)
iDefense Security Advisory 07.19.07: Multiple Vendor Multiple Product URI Handle
(labs-no-reply@idefense.com)
Internet Explorer 0day exploit
(Thor Larholm)
HPSBUX02156 SSRT061236 rev.4 - HP-UX Running Thunderbird, Remote Unauthorized Ac
(HP)
Multiple Vendor Multiple Product URI Handler Input Validation Vulnerability
(iDefense Labs)
Vulnerability Note VU#358017 Mozilla Firefox URL protocol handling vulnerability
(US-CERT)
Privacy Statement
Copyright 2007, SecurityFocus
