- Firefox 3.0.10 (Windows)
- Likely : All Firefox versions supporting the KEYGEN tag.
I. Background
~~~~~~~~~~~~~
Firefox is a popular Internet browser from the Mozilla Corporation. In 2007 the
Mozilla Corporation had a revenue of over 75 million dollars [1], out of
which 68 million where made with a search advertising deal, in other words with
the search box in Firefox that defaults to Google.
I envy the spirit of everyone that works on Firefox code in their spare time,
the attacker.
The user will be able to click "Manage Themes" on the information bar to view
installed themes. However, all pieces of Persona-related information shown in
the list are controlled by the attacker, so nothing prohibits the attacker from
calling her theme "Default", setting the author to "Mozilla Corp." and setting
an innocuous icon and "preview" image to resemble the default Firefox theme.
The same Persona can be installed with multiple IDs to introduce clutter in the
menu and make detecting the rogue Persona and cleaning up the list more
painful.
http://www.wiretrip.net/rfp/policy.html
--------------------------------------------------------------------------------
Affected software description:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Firefox is a popular Internet browser from the Mozilla Corporation.
Application : Firefox for GNU/linux
version : Firefox/3.0.10 (X11; Linux i686; U; en)
Also affected for lower version (tested for version 3.0.8 at
Ubuntu 9.0.4)
16.) Justin Lundy (Founder & CEO, Subterrain)
17.) Lee Chin Sheng (Independent Network Security Researcher)
18.) Lucas Adamski (Director, Security Engineering, Mozilla Corp)
19.) Malaysian Amateur Radio Emergency Service (MARES)
20.) Mark Dowd (ISS)
