Gregory Fleischer

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 3.0.16 Mozilla Firefox versions 3.5.x prior to 3.5.6 SeaMonkey versions prior to 2.0.1 **Description** The issue allows remote attackers to obtain potentially sensitive information about installed software by making multiple calls that specify the ProgID values of different COM objects. This is due to the GeckoActiveXObject function generating different exception messages depending on whether the referenced COM object is listed in the registry. **Recommendations** For Mozilla Firefox versions prior to 3.0.16, update to version 3.0.16 or later. For Mozilla Firefox versions 3.5.x prior to 3.5.6, update to version 3.5.6 or later. For SeaMonkey versions prior to 2.0.1, update to version 2.0.1 or later.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions 3.0.x through 3.0.14 Mozilla Firefox versions 3.5.x through 3.5.3 **Description** The issue allows user-assisted remote attackers to bypass the Same Origin Policy and read an arbitrary content selection. This is achieved via the `document.getSelection` function. **Recommendations** For Mozilla Firefox versions 3.0.x through 3.0.14, update to version 3.0.15 or later. For Mozilla Firefox versions 3.5.x through 3.5.3, update to version 3.5.4 or later.

Name of the Vulnerable Software and Affected Versions: Mozilla Firefox versions prior to 3.0.11 SeaMonkey versions prior to 1.1.17 Description: The issue allows user-assisted remote attackers to read arbitrary cookies via a crafted HTML document. This is achieved by associating local documents with external domain names located after the file:// substring in a URL. Recommendations: For Mozilla Firefox versions prior to 3.0.11, update to version 3.0.11 or later to resolve the issue. For SeaMonkey versions prior to 1.1.17, update to version 1.1.17 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 3.0.9 Thunderbird (affected versions not specified) SeaMonkey (affected versions not specified) **Description** The issue concerns the view-source: URI implementation, which fails to properly enforce the Same Origin Policy. This allows remote attackers to bypass certain restrictions, including crossdomain.xml restrictions, and connect to arbitrary web sites via a Flash file. Attackers can also read, create, or modify Local Shared Objects via a Flash file, or bypass unspecified restrictions to render content using vectors involving a jar: URI. **Recommendations** For Mozilla Firefox versions prior to 3.0.9, update to version 3.0.9 or later to resolve the issue. For Thunderbird, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For SeaMonkey, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Vidalia bundle versions prior to 0.1.2.18 **Description** The issue allows remote attackers to bypass intended access restrictions and modify configuration due to an insecure setting in the Privoxy configuration file. This occurs when Vidalia bundle is running on Windows. **Recommendations** For versions prior to 0.1.2.18, update to version 0.1.2.18 or later to resolve the issue. As a temporary workaround, consider modifying the Privoxy configuration file to remove the insecure enable-remote-http-toggle setting. Restrict access to the configuration file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Vidalia bundle versions prior to 0.1.2.18 **Description** The issue allows remote attackers to bypass intended access restrictions and modify configuration due to insecure settings in the Privoxy configuration file. Specifically, the `enable-remote-toggle` and `enable-edit-actions` settings are enabled, which can be exploited by attackers. **Recommendations** For Vidalia bundle versions prior to 0.1.2.18, update to version 0.1.2.18 or later to resolve the issue. As a temporary workaround, consider disabling the `enable-remote-toggle` and `enable-edit-actions` settings in the Privoxy configuration file until a patch is available. Restrict access to the Privoxy configuration file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Microsoft XML Core Services versions 3.0 through 4.0 **Description** The issue allows remote attackers to obtain sensitive information from another domain via a crafted XML document, related to improper error checks for external DTDs. **Recommendations** For Microsoft XML Core Services versions 3.0 through 4.0, consider applying configuration changes to restrict the processing of external DTDs in XML documents to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 2.0.0.15 SeaMonkey versions prior to 1.1.10 **Description** The issue allows remote attackers to bypass the Same Origin Policy and create arbitrary socket connections via a crafted Java applet. This is related to the Java Embedding Plugin (JEP) and Java LiveConnect. **Recommendations** For Mozilla Firefox versions prior to 2.0.0.15, update to version 2.0.0.15 or later. For SeaMonkey versions prior to 1.1.10, update to version 1.1.10 or later.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 2.0.0.13 SeaMonkey versions prior to 1.1.9 **Description** The issue allows remote attackers to access arbitrary ports on the local machine due to improper parsing of the content origin for jar: URIs by LiveConnect before sending them to the Java plugin. **Recommendations** For Mozilla Firefox versions prior to 2.0.0.13, update to version 2.0.0.13 or later. For SeaMonkey versions prior to 1.1.9, update to version 1.1.9 or later.

**Name of the Vulnerable Software and Affected Versions** Sun JDK and Java Runtime Environment (JRE) versions 6 Update 4 and earlier Sun JDK and Java Runtime Environment (JRE) versions 5.0 Update 14 and earlier Sun JDK and Java Runtime Environment (JRE) versions 1.4.2 16 and earlier **Description** The issue allows remote attackers to access arbitrary network services on the local host via unspecified vectors related to JavaScript and Java APIs. **Recommendations** For versions 6 Update 4 and earlier, update to a version later than Update 4. For versions 5.0 Update 14 and earlier, update to a version later than Update 14. For versions 1.4.2 16 and earlier, update to a version later than 1.4.2 16.