Ubuntu 6.06 LTS:
firefox 1.5.dfsg+1.5.0.15~prepatch080614h-0ubuntu1
Ubuntu 7.10:
firefox 2.0.0.18+nobinonly-0ubuntu0.7.10
Ubuntu 8.04 LTS:
firefox-3.0 3.0.4+nobinonly-0ubuntu0.8.04.1
xulrunner-1.9 1.9.0.4+nobinonly-0ubuntu0.8.04.1
tricking the victim into opening an attacker-controlled web page. This
can be done by specifying a malformed .wma file as a webpage
background sound (bgsound tags) or by embedding windows media player
in a web page (embed tags). This attack works with multiple browsers
(tested on Internet Explorer 6, Internet Explorer 7 and Mozilla
Firefox 2 under Windows XP, other browsers and Windows version are
affected as well).
#####
#PoC#
#####
<script>alert(document.cookie)</script>
For these purposes use "tamper data" or "firebug" plugin to firefox
2)
Open "http://host/stats.php" page from other user.
Solution: Upgrade to the most recent verison
the necessary changes.
Details follow:
USN-930-1 fixed vulnerabilities in Firefox. Due to a software packaging
problem, the Firefox 3.6 update could not be installed when the firefox-2
package was also installed. This update fixes the problem and updates
apturl for the change.
Original advisory details:
The Web Application Security Consortium is pleased to announce the first results
of the Script Mapping project! At this stage in the project we were able to cover
most of the test cases for Internet Explorer 7, Firefox 2 and Safari 3.
The results can be found on the project page:
http://www.webappsec.org/projects/scriptmapping/
Project Description:
