Launchpad.net

CVE 2007-5947

The jar protocol handler in Mozilla Firefox before 2.0.0.10 and SeaMonkey before 1.1.7 retrieves the inner URL regardless of its MIME type, and considers HTML documents within a jar archive to have the same origin as the inner URL, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a jar: URI.

Related bugs and status

CVE-2007-5947 (Candidate) is related to these bugs:

Bug #150791: firefox package on packages site carries warning about development version

Summary				In	Importance	Status
	150791	firefox package on packages site carries warning about development version		firefox (Ubuntu)	Undecided	Fix Released

Bug #172518: [firefox] regression in recent update to 2.0.0.10

		In	Importance	Status
172518	[firefox] regression in recent update to 2.0.0.10	firefox (Ubuntu)	Undecided	Fix Released
172518	[firefox] regression in recent update to 2.0.0.10	Mozilla Firefox	High	Fix Released
172518	[firefox] regression in recent update to 2.0.0.10	Mozilla Firefox 2.0	High	Fix Released
172518	[firefox] regression in recent update to 2.0.0.10	firefox (Ubuntu Edgy)	High	Won't Fix
172518	[firefox] regression in recent update to 2.0.0.10	firefox (Ubuntu Feisty)	High	Fix Released
172518	[firefox] regression in recent update to 2.0.0.10	firefox (Ubuntu Gutsy)	High	Fix Released
172518	[firefox] regression in recent update to 2.0.0.10	firefox (Ubuntu Hardy)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.gnucitizen....
CONFIRM: https://bugzilla.mozil...
CERT-VN: VU#715737
BID: 26385
SECUNIA: 27605
SECTRACK: 1018928
CONFIRM: http://www.mozilla.org...
REDHAT: RHSA-2007:1082
REDHAT: RHSA-2007:1084
SECUNIA: 27793
SECUNIA: 27796
SECUNIA: 27797
SECUNIA: 27816
DEBIAN: DSA-1424
DEBIAN: DSA-1425
SUSE: SUSE-SA:2007:066
UBUNTU: USN-546-2
SECUNIA: 27944
SECUNIA: 27957
SECUNIA: 28001
CONFIRM: https://issues.rpath.c...
MANDRIVA: MDKSA-2007:246
SECUNIA: 28016
CONFIRM: http://wiki.rpath.com/...
REDHAT: RHSA-2007:1083
SECUNIA: 27955
SECUNIA: 28171
MISC: http://bugs.gentoo.org...
MISC: http://bugs.gentoo.org...
GENTOO: GLSA-200712-21
SECUNIA: 28277
CONFIRM: http://browser.netscap...
HP: HPSBUX02153
HP: SSRT061181
SECUNIA: 27800
SECUNIA: 27838
SECUNIA: 27845
SECUNIA: 28398
FEDORA: FEDORA-2007-3952
FEDORA: FEDORA-2007-4098
FEDORA: FEDORA-2007-4106
FEDORA: FEDORA-2007-756
SECUNIA: 27855
SECUNIA: 27979
SUNALERT: 231441
CONFIRM: http://wiki.rpath.com/...
CONFIRM: http://wiki.rpath.com/...
CONFIRM: https://issues.rpath.c...
SECUNIA: 29164
VUPEN: ADV-2007-3818
VUPEN: ADV-2007-4002
VUPEN: ADV-2007-4018
VUPEN: ADV-2008-0083
VUPEN: ADV-2008-0643
SUNALERT: 1018977
SLACKWARE: SSA:2007-331-01
SLACKWARE: SSA:2007-333-01
XF: firefox-jar-uri-xss(38...
OVAL: oval:org.mitre.oval:de...
UBUNTU: USN-546-1
BUGTRAQ: 20080212 FLEA-2008-000...
BUGTRAQ: 20080229 rPSA-2008-009...