| Title |
Mozilla/Firefox Browsers Unauthorized Clipboard Contents Disclosure |
| Published |
2004-09-14-12:00AM |
| Updated |
2004-10-27-04:24PM |
| Class |
Access Validation Error |
| CVE |
CAN-2004-0908 |
| Remote |
Yes |
| Local |
No |
| Credit |
Discovery of this vulnerability is credited to Wladimir Palant <trev@gtchat.de>. |
| Vulnerable |
S.u.S.E. Linux Personal 9.1
S.u.S.E. Linux Personal 9.0 x86_64
S.u.S.E. Linux Personal 9.0
S.u.S.E. Linux Personal 8.2
S.u.S.E. Linux Enterprise Server 9
S.u.S.E. Linux Enterprise Server 8
S.u.S.E. Linux Desktop 1.0
S.u.S.E. Linux 8.1
RedHat Linux 9.0 i386
RedHat Linux 7.3 i686
RedHat Linux 7.3 i386
RedHat Linux 7.3
RedHat Fedora Core1
RedHat Enterprise Linux WS 3
RedHat Enterprise Linux WS 2.1 IA64
RedHat Enterprise Linux WS 2.1
RedHat Enterprise Linux ES 3
RedHat Enterprise Linux ES 2.1 IA64
RedHat Enterprise Linux ES 2.1
RedHat Enterprise Linux AS 3
RedHat Enterprise Linux AS 2.1 IA64
RedHat Enterprise Linux AS 2.1
RedHat Desktop 3.0
RedHat Advanced Workstation for the Itanium Processor 2.1 IA64
RedHat Advanced Workstation for the Itanium Processor 2.1
Netscape Navigator 7.2
Netscape Navigator 7.1
Netscape Navigator 7.0.2
Netscape Navigator 7.0
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9 rc
Mozilla Firefox 0.9
Mozilla Firefox 0.8
Mozilla Browser 1.7.2
Mozilla Browser 1.7.1
Mozilla Browser 1.7 rc3
Mozilla Browser 1.7
Conectiva Linux 10.0
Conectiva Linux 9.0 |
| Not Vulnerable |
Mozilla Firefox Preview Release
Mozilla Browser 1.7.3
HP HP-UX B.11.00
HP HP-UX B.11.11
HP HP-UX B.11.11
HP HP-UX B.11.22
HP HP-UX B.11.23
HP Tru64 5.1 A PK6
HP Tru64 5.1 A PK6 (BL24)
HP Tru64 5.1 B PK4
HP Tru64 5.1 B-2 PK4
HP Tru64 5.1 B-2 PK4 (BL25)
|
| Code |
A proof of concept exploit is available at the following location:
http://bugzilla.mozilla.org/attachment.cgi?id=157492&action=view
http://bugzilla.mozilla.org/attachment.cgi?id=157493&action=view
|
| TXT |
 |
