Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.
First Last Prev Next    This bug is not in your last search results.
Bug 576696 - (CVE-2010-0171) CVE-2010-0171 firefox/thunderbird/seamonkey: XSS using addEventListener and setTimeout on a wrapped object (MFSA 2010-12)
CVE-2010-0171 firefox/thunderbird/seamonkey: XSS using addEventListener and s...
Status: CLOSED ERRATA
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
unspecified
All Linux
high Severity high
: ---
: ---
Assigned To: Red Hat Product Security
http://web.nvd.nist.gov/view/vuln/det...
impact=important,source=internet,repo...
: Security
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2010-03-24 17:04 EDT by Vincent Danen
Modified: 2016-03-04 06:33 EST (History)
3 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2010-03-24 18:10:04 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

  None (edit)
Description Vincent Danen 2010-03-24 17:04:37 EDT 
Mozilla security researcher moz_bug_r_a4 reports that by using an
appropriately wrapped object it was possible to bypass the fix for MFSA
2007-19. Prior to Firefox 3.6 this gives an attacker the ability to perform
cross-site scripting attacks against arbitrary sites as in the original
MFSA 2007-19 attack. Due to unrelated changes in the browser engine used by
Firefox 3.6, attacks in that version are limited to capturing keystroke
events from a cross-origin frame or window rather than full DOM access.
Those events might be sufficient to illicitly obtain passwords or other
sensitive information entered into web forms.

Upstream advisory:

http://www.mozilla.org/security/announce/2010/mfsa2010-12.html

This was fixed in upstream Firefox 3.0.18, and via RHSA-2010:0112 in Red Hat
Enterprise Linux 4 and 5.

https://rhn.redhat.com/errata/RHSA-2010-0112.html
Comment 1 Vincent Danen 2010-03-24 18:10:04 EDT 
A patch was applied to correct this in Red Hat Enterprise Linux 3 and 4
(Seamonkey) via RHSA-2010:0113:

https://rhn.redhat.com/errata/RHSA-2010-0113.html

A patch was applied to correct this in Red Hat Enterprise Linux 4 (Thunderbird)
via RHSA-2010:0154:

https://rhn.redhat.com/errata/RHSA-2010-0154.html

A patch was applied to correct this in Red Hat Enterprise Linux 5 (Thunderbird)
via RHSA-2010:0153:

https://rhn.redhat.com/errata/RHSA-2010-0153.html
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.