Windows BBS The Place for Microsoft Windows Support! Windows, Support, Help Site

Go Back   Windows BBS > Internet & Networking > Firefox, Thunderbird & SeaMonkey
Reload this Page

Firefox .url Shortcut File Information Disclosure

Register FAQDonate Mark Forums Read

Firefox, Thunderbird & SeaMonkey Post your questions about Mozilla based products (Firefox, Thunderbird & SeaMonkey) here.

Register your FREE account to unlock additional features at WindowsBBS.com
Register
Welcome to WindowsBBS.com
Microsoft Windows Support

Mission Statement

WindowsBBS is an online community dedicated to easily accessible technical support for those using Microsoft operating systems and other Windows software.

Our goal is to become the leading resource for computer users that require assistance with their day-to-day computer usage, including full support for networking PC's, virus & malware removal, system upgrades and general support questions.

Discussion Forums
Operating Systems
Windows 7 Windows 7
Windows Vista Windows Vista
Windows XP Windows XP
Windows Server System Windows Server System
Windows 2000 Windows 2000
Windows 95/98/Me/NT Windows 95/98/Me/NT
Internet & Networking
Networking
Internet Explorer
Microsoft Mail
Firefox, Thunderbird
      & SeaMonkey
General Internet
Security
General Security
Malware and Virus
     Removal
Other
Other Software
Hardware
Test Posts
Community
Introductions
General Discussions
Comments
      & Suggestions
News @ WindowsBBS

Forum Sponsor
Image

Reply
 
LinkBack Thread Tools
Old 15th October 2008   #1
WindowsBBS Team Member
 
Ramona's Avatar
 
Profile:
Join Date: Dec 2001
Location: Missouri
Posts: 7,501
Computer Experience:
Experienced Learner
Ramona Reputation LevelRamona Reputation LevelRamona Reputation LevelRamona Reputation LevelRamona Reputation LevelRamona Reputation LevelRamona Reputation LevelRamona Reputation LevelRamona Reputation LevelRamona Reputation LevelRamona Reputation Level

My System

Firefox .url Shortcut File Information Disclosure
TITLE:
Firefox .url Shortcut File Information Disclosure
Quote:
SECUNIA ADVISORY ID:
SA32192

VERIFY ADVISORY:
http://secunia.com/advisories/32192/

CRITICAL:
Not critical

IMPACT:
Exposure of sensitive information

WHERE:
>From remote

SOFTWARE:
Mozilla Firefox 3.x
http://secunia.com/advisories/product/19089/

DESCRIPTION:
A vulnerability has been reported in Firefox, which can be exploited
by malicious people to disclose sensitive information.

The vulnerability is caused due to an error when processing .url
shortcuts in HTML elements. This can be exploited to disclose
potentially sensitive information from the cache.

Successful exploitation requires that a user is e.g. tricked into
opening an HTML page from a local directory or a RAR archive
containing .url files.

The vulnerability is reported in version 3.0.3. Other versions may
also be affected.

SOLUTION:
Do not open HTML files from untrusted sources.

PROVIDED AND/OR DISCOVERED BY:
Liu Die Yu

ORIGINAL ADVISORY:
http://liudieyu0.blog124.fc2.com/blog-entry-6.html

Ramona is offline   Reply With Quote



Didn't find the information you thought to find?
Check out these Similar Threads
Reply

« E-mail program won't send mail. | Words running together on certain web sites. »
Thread Tools


Similar Threads
Thread Thread Starter Forum Replies Last Post
win32/pacex.gen virus berasencio Malware and Virus Removal 3 20th May 2008 03:53
Updates Installed or Not kesher Windows XP 5 19th February 2008 15:22
[Resolved] wmpconf.dll file suspected infection Ledraisel Malware and Virus Removal 15 31st August 2007 00:37
Encrypted files? Dcmurray Malware and Virus Removal 1 19th December 2006 05:38
Dump windows 2003 terminal server stop code 50 jimmyzshack Windows Server System 5 23rd November 2006 07:37


All times are GMT +1. The time now is 17:27.




Advertise - Contact Us - Windows BBS - Archive - Privacy Statement - Top

Advertisements do not imply our endorsement of the product or service advertised.
Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2010, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.3.2
Copyright © 2002 - 2009 WindowsBBS.com. All rights reserved.
Terms of Use, Legal Information & Privacy Policy
[]

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32