Mozilla Firefox “jar:” Protocol Handling Cross-Site Scripting Security Issue
November 10th, 2007
Description:
A security issue has been reported in Mozilla Firefox, which can be exploited by malicious people to conduct cross-site scripting attacks.
The problem is that the “jar:” protocol handler does not validate the MIME type of the contents of an archive, which are then executed in the context of the site hosting the archive. This can be exploited to conduct cross-site scripting attacks on sites that allow a user to upload certain files (e.g. .zip, .png, .doc, .odt, .txt).
Solution:
Do not follow untrusted “jar:” links or browse untrusted websites.
Provided and/or discovered by:
Reported by Jesse Ruderman in a Bugzilla entry.
Independently discovered by pdp.
Via Secunia.com
Leave a Comment
Some HTML allowed:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>
Trackback this post | Subscribe to the comments via RSS Feed