ID CVE-2009-4129 Type cve Reporter NVD Modified 2017-08-16T21:31:27
Description
Race condition in Mozilla Firefox allows remote attackers to produce a JavaScript message with a spoofed domain association by writing the message in between the document request and document load for a web page in a different domain.
{"id": "CVE-2009-4129", "bulletinFamily": "NVD", "title": "CVE-2009-4129", "description": "Race condition in Mozilla Firefox allows remote attackers to produce a JavaScript message with a spoofed domain association by writing the message in between the document request and document load for a web page in a different domain.", "published": "2009-12-14T12:30:00", "modified": "2017-08-16T21:31:27", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-4129", "reporter": "NVD", "references": ["http://archives.neohapsis.com/archives/bugtraq/2009-12/0104.html", "https://exchange.xforce.ibmcloud.com/vulnerabilities/54611", "http://securitytracker.com/id?1023287", "http://www.securityfocus.com/bid/37230"], "cvelist": ["CVE-2009-4129"], "type": "cve", "lastseen": "2017-08-17T11:14:33", "history": [{"bulletin": {"assessment": {"href": "", "name": "", "system": ""}, "bulletinFamily": "NVD", "cpe": ["cpe:/a:mozilla:firefox"], "cvelist": ["CVE-2009-4129"], "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}, "description": "Race condition in Mozilla Firefox allows remote attackers to produce a JavaScript message with a spoofed domain association by writing the message in between the document request and document load for a web page in a different domain.", "edition": 1, "enchantments": {}, "hash": "ba5c4458a91f84e92d16df4b7243ae517e240edc0cebbf05fcea68c87c5ed396", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "30fd9aa930fa1659ec199621a2c34944", "key": "cvelist"}, {"hash": "6fa67b862745a601dd203cc0371793bf", "key": "href"}, {"hash": "7db5474e5dc4c593cca49a6813c10dd3", "key": "description"}, {"hash": "ff40bcbe8dac11fce12becae8749491d", "key": "modified"}, {"hash": "ba9608c913231bea1110c47730a9ae33", "key": "references"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "5b98e2f88129e9f722a06a26f9489aea", "key": "cpe"}, {"hash": "8a28889787508bab047d7fa94ce9a58c", "key": "cvss"}, {"hash": "d9f6b9bb12ac004b06aca5078978c3bc", "key": "published"}, {"hash": "f1f14942af9ef6595738200071f6a974", "key": "title"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-4129", "id": "CVE-2009-4129", "lastseen": "2016-09-03T13:05:28", "modified": "2009-12-15T00:00:00", "objectVersion": "1.2", "published": "2009-12-14T12:30:00", "references": ["http://archives.neohapsis.com/archives/bugtraq/2009-12/0104.html", "http://securitytracker.com/id?1023287", "http://www.securityfocus.com/bid/37230", "http://xforce.iss.net/xforce/xfdb/54611"], "reporter": "NVD", "scanner": [], "title": "CVE-2009-4129", "type": "cve", "viewCount": 0}, "differentElements": ["references", "modified"], "edition": 1, "lastseen": "2016-09-03T13:05:28"}], "edition": 2, "hashmap": [{"key": "assessment", "hash": "6d3f4796275bb54c21a33b82f399cc6d"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "5b98e2f88129e9f722a06a26f9489aea"}, {"key": "cvelist", "hash": "30fd9aa930fa1659ec199621a2c34944"}, {"key": "cvss", "hash": "8a28889787508bab047d7fa94ce9a58c"}, {"key": "description", "hash": "7db5474e5dc4c593cca49a6813c10dd3"}, {"key": "href", "hash": "6fa67b862745a601dd203cc0371793bf"}, {"key": "modified", "hash": "b85085d4791d5467e2948a61e9c49638"}, {"key": "published", "hash": "d9f6b9bb12ac004b06aca5078978c3bc"}, {"key": "references", "hash": "0fb7bb7fae11575530f9e2377f0eb39e"}, {"key": "reporter", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "scanner", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "f1f14942af9ef6595738200071f6a974"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "6460260df5c2a9463c410bbe993afd05909763752b4c5cc9ea31bd4562cf3088", "viewCount": 0, "enchantments": {"score": {"value": 4.3, "vector": "NONE", "modified": "2017-08-17T11:14:33"}, "vulnersScore": 4.3}, "objectVersion": "1.3", "cpe": ["cpe:/a:mozilla:firefox"], "assessment": {"href": "", "name": "", "system": ""}, "scanner": []}
{"openvas": [{"lastseen": "2017-07-02T21:14:00", "references": ["http://xforce.iss.net/xforce/xfdb/54612", "http://securitytracker.com/alerts/2009/Dec/1023287.html", "http://xforce.iss.net/xforce/xfdb/54611"], "pluginID": "801093", "description": "The host is installed with Firefox browser and is prone to multiple\n spoofing vulnerabilies.", "edition": 1, "reporter": "Copyright (C) 2009 Greenbone Networks GmbH", "published": "2009-12-17T00:00:00", "title": "Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Windows)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "General", "bulletinFamily": "scanner", "cvelist": ["CVE-2009-4130", "CVE-2009-4129"], "modified": "2016-12-28T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=801093", "id": "OPENVAS:801093", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_firefox_mult_spoof_vuln_win_dec09.nasl 4865 2016-12-28 16:16:43Z teissa $\n#\n# Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Windows)\n#\n# Authors:\n# Antu Sanadi <santu@secpod.com>\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ntag_impact = \"Successful exploitation will allow attackers to conduct spoofing attacks and\n possibly launch further attacks on the system.\n Impact Level: System/Application.\";\ntag_affected = \"Mozilla Firefox version 3.0 to 3.5.5 on Windows.\";\ntag_insight = \"- A race condition error allows attackers to produce a JavaScript message with\n a spoofed domain association by writing the message in between the document\n request and document load for a web page in a different domain.\n - Visual truncation vulnerability in the MakeScriptDialogTitle function in\n nsGlobalWindow.cpp in Mozilla Firefox allows remote attackers to spoof the\n origin domain name of a script via a long name.\";\ntag_solution = \"Upgrade to Firefox version 3.6.3 or later,\n For updates refer to http://www.mozilla.com/en-US/firefox/firefox.html\";\ntag_summary = \"The host is installed with Firefox browser and is prone to multiple\n spoofing vulnerabilies.\";\n\nif(description)\n{\n script_id(801093);\n script_version(\"$Revision: 4865 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-12-28 17:16:43 +0100 (Wed, 28 Dec 2016) $\");\n script_tag(name:\"creation_date\", value:\"2009-12-17 08:14:37 +0100 (Thu, 17 Dec 2009)\");\n script_tag(name:\"cvss_base\", value:\"5.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:P/A:P\");\n script_cve_id(\"CVE-2009-4129\", \"CVE-2009-4130\");\n script_bugtraq_id(37230, 37232);\n script_name(\"Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Windows)\");\n script_xref(name : \"URL\" , value : \"http://xforce.iss.net/xforce/xfdb/54612\");\n script_xref(name : \"URL\" , value : \"http://xforce.iss.net/xforce/xfdb/54611\");\n script_xref(name : \"URL\" , value : \"http://securitytracker.com/alerts/2009/Dec/1023287.html\");\n\n script_tag(name:\"qod_type\", value:\"executable_version\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"gb_firefox_detect_win.nasl\");\n script_require_keys(\"Firefox/Win/Ver\");\n script_tag(name : \"impact\" , value : tag_impact);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n exit(0);\n}\n\n\ninclude(\"version_func.inc\");\n\nffVer = get_kb_item(\"Firefox/Win/Ver\");\nif(!ffVer){\n exit(0);\n}\n\n# Grep for Firefox version 3.0 to 3.5.5\nif(version_in_range(version:ffVer, test_version:\"3.0\", test_version2:\"3.5.5\")){\n security_message(0);\n}\n", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-07-02T21:13:54", "references": ["http://xforce.iss.net/xforce/xfdb/54612", "http://securitytracker.com/alerts/2009/Dec/1023287.html", "http://xforce.iss.net/xforce/xfdb/54611"], "pluginID": "801094", "description": "The host is installed with Firefox browser and is prone to multiple\n spoofing vulnerabilies.", "edition": 1, "reporter": "Copyright (C) 2009 Greenbone Networks GmbH", "published": "2009-12-17T00:00:00", "title": "Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Linux)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "General", "bulletinFamily": "scanner", "cvelist": ["CVE-2009-4130", "CVE-2009-4129"], "modified": "2016-12-28T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=801094", "id": "OPENVAS:801094", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_firefox_mult_spoof_vuln_lin_dec09.nasl 4865 2016-12-28 16:16:43Z teissa $\n#\n# Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Linux)\n#\n# Authors:\n# Antu Sanadi <santu@secpod.com>\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ntag_impact = \"Successful exploitation will allow attackers to conduct spoofing attacks and\n possibly launch further attacks on the system.\n Impact Level:System/Application\";\ntag_affected = \"Mozilla Firefox version 3.0 to 3.5.5 on Linux.\";\ntag_insight = \"- A race condition error allows attackers to produce a JavaScript message with\n a spoofed domain association by writing the message in between the document\n request and document load for a web page in a different domain.\n - Visual truncation vulnerability in the MakeScriptDialogTitle function in\n nsGlobalWindow.cpp in Mozilla Firefox allows remote attackers to spoof the\n origin domain name of a script via a long name.\";\ntag_solution = \"Upgrade to Firefox version 3.6.3 or later,\n For updates refer to http://www.mozilla.com/en-US/firefox/firefox.html\";\ntag_summary = \"The host is installed with Firefox browser and is prone to multiple\n spoofing vulnerabilies.\";\n\nif(description)\n{\n script_id(801094);\n script_version(\"$Revision: 4865 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-12-28 17:16:43 +0100 (Wed, 28 Dec 2016) $\");\n script_tag(name:\"creation_date\", value:\"2009-12-17 08:14:37 +0100 (Thu, 17 Dec 2009)\");\n script_tag(name:\"cvss_base\", value:\"5.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:P/A:P\");\n script_cve_id(\"CVE-2009-4129\", \"CVE-2009-4130\");\n script_bugtraq_id(37230, 37232);\n script_name(\"Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Linux)\");\n script_xref(name : \"URL\" , value : \"http://xforce.iss.net/xforce/xfdb/54612\");\n script_xref(name : \"URL\" , value : \"http://xforce.iss.net/xforce/xfdb/54611\");\n script_xref(name : \"URL\" , value : \"http://securitytracker.com/alerts/2009/Dec/1023287.html\");\n\n script_tag(name:\"qod_type\", value:\"executable_version\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"gb_firefox_detect_lin.nasl\");\n script_require_keys(\"Firefox/Linux/Ver\");\n script_tag(name : \"impact\" , value : tag_impact);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n exit(0);\n}\n\n\ninclude(\"version_func.inc\");\n\nffVer = get_kb_item(\"Firefox/Linux/Ver\");\nif(!ffVer){\n exit(0);\n}\n\n# Grep for Firefox version 3.0 to 3.5.5\nif(version_in_range(version:ffVer, test_version:\"3.0\", test_version2:\"3.5.5\")){\n security_message(0);\n}\n", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-12-04T13:43:39", "references": ["http://xforce.iss.net/xforce/xfdb/54612", "http://www.mozilla.com/en-US/firefox/firefox.html", "http://securitytracker.com/alerts/2009/Dec/1023287.html", "http://xforce.iss.net/xforce/xfdb/54611"], "pluginID": "1361412562310801093", "description": "The host is installed with Firefox browser and is prone to multiple\n spoofing vulnerabilies.", "edition": 5, "reporter": "Copyright (C) 2009 Greenbone Networks GmbH", "published": "2009-12-17T00:00:00", "title": "Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Windows)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "General", "bulletinFamily": "scanner", "cvelist": ["CVE-2009-4130", "CVE-2009-4129"], "modified": "2018-12-03T00:00:00", "id": "OPENVAS:1361412562310801093", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310801093", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_firefox_mult_spoof_vuln_win_dec09.nasl 12629 2018-12-03 15:19:43Z cfischer $\n#\n# Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Windows)\n#\n# Authors:\n# Antu Sanadi <santu@secpod.com>\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.801093\");\n script_version(\"$Revision: 12629 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-12-03 16:19:43 +0100 (Mon, 03 Dec 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-12-17 08:14:37 +0100 (Thu, 17 Dec 2009)\");\n script_tag(name:\"cvss_base\", value:\"5.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:P/A:P\");\n script_cve_id(\"CVE-2009-4129\", \"CVE-2009-4130\");\n script_bugtraq_id(37230, 37232);\n script_name(\"Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Windows)\");\n script_xref(name:\"URL\", value:\"http://xforce.iss.net/xforce/xfdb/54612\");\n script_xref(name:\"URL\", value:\"http://xforce.iss.net/xforce/xfdb/54611\");\n script_xref(name:\"URL\", value:\"http://securitytracker.com/alerts/2009/Dec/1023287.html\");\n\n script_tag(name:\"qod_type\", value:\"executable_version\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"gb_firefox_detect_portable_win.nasl\");\n script_mandatory_keys(\"Firefox/Win/Ver\");\n script_tag(name:\"impact\", value:\"Successful exploitation will allow attackers to conduct spoofing attacks and\n possibly launch further attacks on the system.\");\n script_tag(name:\"affected\", value:\"Mozilla Firefox version 3.0 to 3.5.5 on Windows.\");\n script_tag(name:\"insight\", value:\"- A race condition error allows attackers to produce a JavaScript message with\n a spoofed domain association by writing the message in between the document\n request and document load for a web page in a different domain.\n\n - Visual truncation vulnerability in the MakeScriptDialogTitle function in\n nsGlobalWindow.cpp in Mozilla Firefox allows remote attackers to spoof the\n origin domain name of a script via a long name.\");\n script_tag(name:\"solution\", value:\"Upgrade to Firefox version 3.6.3 or later.\");\n script_tag(name:\"summary\", value:\"The host is installed with Firefox browser and is prone to multiple\n spoofing vulnerabilies.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_xref(name:\"URL\", value:\"http://www.mozilla.com/en-US/firefox/firefox.html\");\n exit(0);\n}\n\n\ninclude(\"version_func.inc\");\n\nffVer = get_kb_item(\"Firefox/Win/Ver\");\nif(!ffVer){\n exit(0);\n}\n\nif(version_in_range(version:ffVer, test_version:\"3.0\", test_version2:\"3.5.5\")){\n security_message( port: 0, data: \"The target host was found to be vulnerable\" );\n}\n", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-12-04T13:43:46", "references": ["http://xforce.iss.net/xforce/xfdb/54612", "http://www.mozilla.com/en-US/firefox/firefox.html", "http://securitytracker.com/alerts/2009/Dec/1023287.html", "http://xforce.iss.net/xforce/xfdb/54611"], "pluginID": "1361412562310801094", "description": "The host is installed with Firefox browser and is prone to multiple\n spoofing vulnerabilies.", "edition": 5, "reporter": "Copyright (C) 2009 Greenbone Networks GmbH", "published": "2009-12-17T00:00:00", "title": "Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Linux)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "General", "bulletinFamily": "scanner", "cvelist": ["CVE-2009-4130", "CVE-2009-4129"], "modified": "2018-12-03T00:00:00", "id": "OPENVAS:1361412562310801094", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310801094", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_firefox_mult_spoof_vuln_lin_dec09.nasl 12629 2018-12-03 15:19:43Z cfischer $\n#\n# Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Linux)\n#\n# Authors:\n# Antu Sanadi <santu@secpod.com>\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.801094\");\n script_version(\"$Revision: 12629 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-12-03 16:19:43 +0100 (Mon, 03 Dec 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-12-17 08:14:37 +0100 (Thu, 17 Dec 2009)\");\n script_tag(name:\"cvss_base\", value:\"5.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:P/A:P\");\n script_cve_id(\"CVE-2009-4129\", \"CVE-2009-4130\");\n script_bugtraq_id(37230, 37232);\n script_name(\"Mozilla Firefox Multiple Spoofing Vulnerabilies - dec09 (Linux)\");\n script_xref(name:\"URL\", value:\"http://xforce.iss.net/xforce/xfdb/54612\");\n script_xref(name:\"URL\", value:\"http://xforce.iss.net/xforce/xfdb/54611\");\n script_xref(name:\"URL\", value:\"http://securitytracker.com/alerts/2009/Dec/1023287.html\");\n\n script_tag(name:\"qod_type\", value:\"executable_version\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"gb_firefox_detect_lin.nasl\");\n script_mandatory_keys(\"Firefox/Linux/Ver\");\n script_tag(name:\"impact\", value:\"Successful exploitation will allow attackers to conduct spoofing attacks and\n possibly launch further attacks on the system.\");\n script_tag(name:\"affected\", value:\"Mozilla Firefox version 3.0 to 3.5.5 on Linux.\");\n script_tag(name:\"insight\", value:\"- A race condition error allows attackers to produce a JavaScript message with\n a spoofed domain association by writing the message in between the document\n request and document load for a web page in a different domain.\n\n - Visual truncation vulnerability in the MakeScriptDialogTitle function in\n nsGlobalWindow.cpp in Mozilla Firefox allows remote attackers to spoof the\n origin domain name of a script via a long name.\");\n script_tag(name:\"solution\", value:\"Upgrade to Firefox version 3.6.3 or later.\");\n script_tag(name:\"summary\", value:\"The host is installed with Firefox browser and is prone to multiple\n spoofing vulnerabilies.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_xref(name:\"URL\", value:\"http://www.mozilla.com/en-US/firefox/firefox.html\");\n exit(0);\n}\n\n\ninclude(\"version_func.inc\");\n\nffVer = get_kb_item(\"Firefox/Linux/Ver\");\nif(!ffVer){\n exit(0);\n}\n\nif(version_in_range(version:ffVer, test_version:\"3.0\", test_version2:\"3.5.5\")){\n security_message( port: 0, data: \"The target host was found to be vulnerable\" );\n}\n", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:09:34", "references": ["https://vulners.com/securityvulns/securityvulns:doc:22877"], "description": "It's possible to spoof form URL.", "edition": 1, "reporter": "BUGTRAQ", "published": "2009-12-09T00:00:00", "title": "Mozilla Firefox dialog spoofing", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:09:34", "vector": "NONE", "value": 10.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2009-4130", "CVE-2009-4129"], "modified": "2009-12-09T00:00:00", "id": "SECURITYVULNS:VULN:10449", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:10449", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:10:32", "references": [], "description": "There exist two seperate security issues in Mozilla Firefox concerning \r\nJavaScript prompts appearing from domain which is not the true origin. \r\nThe first is about spawning JavaScript prompted message over web page of \r\nanother domain, so in effect, the address bar and the browser content \r\nare from one domain, but the prompted JavaScript message is generated by \r\nscript from another different domain. This is resulted from a race \r\ncondition scenario, in which the browser is first navigated to URL of \r\nanother domain, then before it's loaded, immediately launch JavaScript \r\nmessage prompting, so JavaScript message is displayed over a web page \r\nother than its origin web page. The issue here only affects Firefox, and \r\ndoesn't seem to affect Internet Explorer and Google Chrome. This is \r\nCVE-2009-4129. The second is regarding the function named \r\n"MakeScriptDialogTitle"(in file "nsGlobalWindow.cpp" of Firefox source \r\ncode), responsible for "Script Dialog Title", which is designed to show \r\n"host". The "MakeScriptDialogTitle" function removes usernames and \r\npasswords from URL, with a purpose of "spoof prevention", but it's not \r\nenough, because script dialog has limited and predictable width, so only \r\nthe prefix will be displayed if domain name is long. This is \r\nCVE-2009-4130. Topsec has the credit.", "edition": 1, "reporter": "Securityvulns", "published": "2009-12-09T00:00:00", "title": "Mozilla Firefox JavaScript Prompt Spoofing Weakness", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:32", "vector": "NONE", "value": 6.8}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2009-4130", "CVE-2009-4129"], "modified": "2009-12-09T00:00:00", "id": "SECURITYVULNS:DOC:22877", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:22877", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}]}
