Mozilla Firefox and SeaMonkey NTLM Credential Reflection Authentication Bypass Vulnerability

Mozilla Firefox and SeaMonkey NTLM Credential Reflection Authentication Bypass Vulnerability

References:

Flock 2.5.6 Release Notes (Flock)
Mozilla Foundation Homepage (Mozilla)
ASA-2009-580 (Avaya)
ASA-2009-582 (Avaya)
Fixed in Firefox 3.5.6 (Mozilla)
MFSA 2009-68 NTLM reflection vulnerability (Mozilla)
MFSA 2010-07 Fixes for potentially exploitable crashes ported to the legacy bran (Mozilla)

Privacy Statement
Copyright 2010, SecurityFocus