Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

mozillaftp.txt

🗓️ 09 Aug 2002 00:00:00Reported by Eiji YoshidaType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 36 Views

Mozilla FTP View Cross-Site Scripting vulnerability affects Windows2000 SP2 Mozilla 1.0 users.

Code
`-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA1  
  
  
+ Title:  
~~~~~~~~~~~~~~~~~  
Mozilla FTP View Cross-Site Scripting Vulnerability  
  
  
+ Date:  
~~~~~~~~~~~~~~~~~  
4 August 2002  
  
  
+ Author:  
~~~~~~~~~~~~~~~~~  
Eiji James Yoshida [[email protected]]  
  
  
+ Risk:  
~~~~~~~~~~~~~~~~~  
Medium  
  
  
+ Vulnerable:  
~~~~~~~~~~~~~~~~~  
Windows2000 SP2 Mozilla 1.0  
  
  
+ Not vulnerable:  
~~~~~~~~~~~~~~~~~  
Windows2000 SP2 Mozilla 1.1 Beta  
  
  
+ Overview:  
~~~~~~~~~~~~~~~~~  
Mozilla allows running Malicious Scripts due to a bug in 'FTP view' feature.  
If you click on a malicious link, the script embedded in URL will run.  
  
* If the ftp server and the http server are the same address, it is dangerous.  
Because the cookie may be modified by the attacker.  
  
  
+ Detailes:  
~~~~~~~~~~~~~~~~~  
This problem is in 'FTP view' feature.  
The '<title>URL</title>' is not escaped.  
  
  
+ Exploit code:  
~~~~~~~~~~~~~~~~~  
<a href="ftp://[FTPserver]/#%3C%2ftitle%3E%3Cscript%3Ealert(%22exploit%22);%3C%2fscript%3E">Exploit</a>  
  
Example:  
<a href="ftp://ftp.mozilla.org/#%3C%2ftitle%3E%3Cscript%3Ealert(%22exploit%22);%3C%2fscript%3E">Exploit</a>  
  
  
+ Demonstration:  
~~~~~~~~~~~~~~~~~  
http://www.geocities.co.jp/SiliconValley/1667/advisory03e.html  
  
  
+ Workaround:  
~~~~~~~~~~~~~~~~~  
Use the latest version of Mozilla 1.1 Beta or disable JavaScript.  
  
  
+ Vendor status:  
~~~~~~~~~~~~~~~~~  
The Mozilla security bug group was notified on 22 June 2002.  
They have fixed the problem, and the fix will be included in Mozilla 1.0.1.  
(The fix has already been included in the latest version of Mozilla 1.1 Beta.)  
  
  
- -------------------------------------------------------------  
Eiji "James" Yoshida  
penetration technique research site  
E-mail: [email protected]  
URL: http://www.geocities.co.jp/SiliconValley/1667/index.htm  
- -------------------------------------------------------------  
  
-----BEGIN PGP SIGNATURE-----  
Version: PGP 6.5.8ckt  
Comment: Eiji James Yoshida  
  
iQA/AwUBPU92XTnqpMRtMot1EQLOuQCeO8vvL8ML6Krm0DFmwAauDWy3BhIAoL5q  
ijvFoTEv7XV5IBaAyuFEecmH  
=9sum  
-----END PGP SIGNATURE-----  
  
  
  
  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
09 Aug 2002 00:00Current
7.4High risk
Vulners AI Score7.4
cross-site scriptingmozilla ftp vulnerabilitywindows2000 sp2medium riskexploit code.
36