Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:L/Au:N/C:P/I:N/A:N)
Производитель ПО
Наименование ПО
devhelp
(Unknown)
Описание
Модуль Password Manager в Mozilla Firefox и модуль Passcard Manager в Netscape не проверяют ACTION URL в элементе FORM, содержащем INPUT-поле для ввода пароля, на соответствие URL'а, содержащегося в нем, адресу того веб-сайта, для которого пароль необходимо сохранить. Это позволяет злоумышленнику, действующему удаленно, получить пароль из INPUT-поля на веб-странице того сайта, для которого был сохранен данный пароль.
Как исправить
Для устранения уязвимости необходимо установить последнюю версию продукта, соответствующую используемой платформе. Необходимую информацию можно получить по адресу:
http://www.mozilla.com/
В качестве временного решения рекомендуется отключить Password Manager, а также опции "Automatically Fill Passcard" и "Automatically Log In" в Passcard Manager. Кроме того, всегда проверяйте URL, прежде чем активизировать его.
http://www.mozilla.com/
В качестве временного решения рекомендуется отключить Password Manager, а также опции "Automatically Fill Passcard" и "Automatically Log In" в Passcard Manager. Кроме того, всегда проверяйте URL, прежде чем активизировать его.
Ссылки
BUGTRAQ (20061122 Big Flaw in Firefox 2: Password Manager Bug Exposes Passwords): http://www.securityfocus.com/archive/1/archive/1/452382/100/0/threaded
BUGTRAQ (20061123 Password Flaw also in Firefox 1.5.08. Was: Big Flaw in Firefox 2: Password Manager Bug Exposes Passwords): http://www.securityfocus.com/archive/1/archive/1/452431/100/0/threaded
BUGTRAQ (20061123 Re: Big Flaw in Firefox 2: Password Manager Bug Exposes Passwords): http://www.securityfocus.com/archive/1/archive/1/452440/100/0/threaded
BUGTRAQ (20061123 Re: Password Flaw also in Firefox 1.5.08. Was: Big Flaw in Firefox 2: Password Manager Bug Exposes Passwords): http://www.securityfocus.com/archive/1/archive/1/452463/100/0/threaded
http://www.info-svc.com/news/11-21-2006/
(Bugzilla Bug 360493): https://bugzilla.mozilla.org/show_bug.cgi?id=360493
BID (21240): http://www.securityfocus.com/bid/21240
FRSIRT (ADV-2006-4662): http://www.frsirt.com/english/advisories/2006/4662
SECTRACK (1017271): http://securitytracker.com/id?1017271
XF (firefox-passwordmgr-information-disclosure(30470)): http://xforce.iss.net/xforce/xfdb/30470
BUGTRAQ (20061220 critical Flaw in Firefox 2.0.0.1 allows to steal the user passwords with a videoclip): http://www.securityfocus.com/archive/1/archive/1/454982/100/0/threaded
http://www.info-svc.com/news/11-21-2006/rcsr1/
BUGTRAQ (20061221 Re: critical Flaw in Firefox 2.0.0.1 allows to steal the user passwords with a videoclip): http://www.securityfocus.com/archive/1/archive/1/455073/100/0/threaded
BUGTRAQ (20061222 Re[2]: critical Flaw in Firefox 2.0.0.1 allows to steal the user passwords with a videoclip): http://www.securityfocus.com/archive/1/archive/1/455148/100/0/threaded
BUGTRAQ (20070226 rPSA-2007-0040-1 firefox): http://www.securityfocus.com/archive/1/archive/1/461336/100/0/threaded
BUGTRAQ (20070303 rPSA-2007-0040-3 firefox thunderbird): http://www.securityfocus.com/archive/1/archive/1/461809/100/0/threaded
http://www.mozilla.org/security/announce/2007/mfsa2007-02.html
https://issues.rpath.com/browse/RPL-1081
https://issues.rpath.com/browse/RPL-1103
FEDORA (FEDORA-2007-281): http://fedoranews.org/cms/node/2713
FEDORA (FEDORA-2007-293): http://fedoranews.org/cms/node/2728
GENTOO (GLSA-200703-04): http://security.gentoo.org/glsa/glsa-200703-04.xml
GENTOO (GLSA-200703-08): http://www.gentoo.org/security/en/glsa/glsa-200703-08.xml
MANDRIVA (MDKSA-2007:050): http://frontal2.mandriva.com/security/advisories?name=MDKSA-2007:050
REDHAT (RHSA-2007:0079): http://www.redhat.com/support/errata/RHSA-2007-0079.html
REDHAT (RHSA-2007:0077): http://rhn.redhat.com/errata/RHSA-2007-0077.html
REDHAT (RHSA-2007:0078): http://www.redhat.com/support/errata/RHSA-2007-0078.html
REDHAT (RHSA-2007:0097): http://www.redhat.com/support/errata/RHSA-2007-0097.html
REDHAT (RHSA-2007:0108): http://www.redhat.com/support/errata/RHSA-2007-0108.html
SUSE (SUSE-SA:2007:019): http://lists.suse.com/archive/suse-security-announce/2007-Mar/0001.html
UBUNTU (USN-428-1): http://www.ubuntu.com/usn/usn-428-1
BID (22694): http://www.securityfocus.com/bid/22694
FRSIRT (ADV-2007-0718): http://www.frsirt.com/english/advisories/2007/0718
SGI (20070301-01-P): ftp://patches.sgi.com/support/free/security/advisories/20070301-01-P.asc
BUGTRAQ (20061123 Password Flaw also in Firefox 1.5.08. Was: Big Flaw in Firefox 2: Password Manager Bug Exposes Passwords): http://www.securityfocus.com/archive/1/archive/1/452431/100/0/threaded
BUGTRAQ (20061123 Re: Big Flaw in Firefox 2: Password Manager Bug Exposes Passwords): http://www.securityfocus.com/archive/1/archive/1/452440/100/0/threaded
BUGTRAQ (20061123 Re: Password Flaw also in Firefox 1.5.08. Was: Big Flaw in Firefox 2: Password Manager Bug Exposes Passwords): http://www.securityfocus.com/archive/1/archive/1/452463/100/0/threaded
http://www.info-svc.com/news/11-21-2006/
(Bugzilla Bug 360493): https://bugzilla.mozilla.org/show_bug.cgi?id=360493
BID (21240): http://www.securityfocus.com/bid/21240
FRSIRT (ADV-2006-4662): http://www.frsirt.com/english/advisories/2006/4662
SECTRACK (1017271): http://securitytracker.com/id?1017271
XF (firefox-passwordmgr-information-disclosure(30470)): http://xforce.iss.net/xforce/xfdb/30470
BUGTRAQ (20061220 critical Flaw in Firefox 2.0.0.1 allows to steal the user passwords with a videoclip): http://www.securityfocus.com/archive/1/archive/1/454982/100/0/threaded
http://www.info-svc.com/news/11-21-2006/rcsr1/
BUGTRAQ (20061221 Re: critical Flaw in Firefox 2.0.0.1 allows to steal the user passwords with a videoclip): http://www.securityfocus.com/archive/1/archive/1/455073/100/0/threaded
BUGTRAQ (20061222 Re[2]: critical Flaw in Firefox 2.0.0.1 allows to steal the user passwords with a videoclip): http://www.securityfocus.com/archive/1/archive/1/455148/100/0/threaded
BUGTRAQ (20070226 rPSA-2007-0040-1 firefox): http://www.securityfocus.com/archive/1/archive/1/461336/100/0/threaded
BUGTRAQ (20070303 rPSA-2007-0040-3 firefox thunderbird): http://www.securityfocus.com/archive/1/archive/1/461809/100/0/threaded
http://www.mozilla.org/security/announce/2007/mfsa2007-02.html
https://issues.rpath.com/browse/RPL-1081
https://issues.rpath.com/browse/RPL-1103
FEDORA (FEDORA-2007-281): http://fedoranews.org/cms/node/2713
FEDORA (FEDORA-2007-293): http://fedoranews.org/cms/node/2728
GENTOO (GLSA-200703-04): http://security.gentoo.org/glsa/glsa-200703-04.xml
GENTOO (GLSA-200703-08): http://www.gentoo.org/security/en/glsa/glsa-200703-08.xml
MANDRIVA (MDKSA-2007:050): http://frontal2.mandriva.com/security/advisories?name=MDKSA-2007:050
REDHAT (RHSA-2007:0079): http://www.redhat.com/support/errata/RHSA-2007-0079.html
REDHAT (RHSA-2007:0077): http://rhn.redhat.com/errata/RHSA-2007-0077.html
REDHAT (RHSA-2007:0078): http://www.redhat.com/support/errata/RHSA-2007-0078.html
REDHAT (RHSA-2007:0097): http://www.redhat.com/support/errata/RHSA-2007-0097.html
REDHAT (RHSA-2007:0108): http://www.redhat.com/support/errata/RHSA-2007-0108.html
SUSE (SUSE-SA:2007:019): http://lists.suse.com/archive/suse-security-announce/2007-Mar/0001.html
UBUNTU (USN-428-1): http://www.ubuntu.com/usn/usn-428-1
BID (22694): http://www.securityfocus.com/bid/22694
FRSIRT (ADV-2007-0718): http://www.frsirt.com/english/advisories/2007/0718
SGI (20070301-01-P): ftp://patches.sgi.com/support/free/security/advisories/20070301-01-P.asc