Jakob Balle

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 4.0.249.78 **Description** A use-after-free issue allows remote attackers to cause a denial of service or possibly execute arbitrary code via vectors involving the display of a blocked popup window during navigation to a different web site. **Recommendations** For versions prior to 4.0.249.78, update to version 4.0.249.78 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Mozilla Firefox versions prior to 3.0.11 Description: A race condition in the NPObjWrapper NewResolve function might allow remote attackers to execute arbitrary code via a page transition during Java applet loading, related to a use-after-free vulnerability for memory associated with a destroyed Java object. Recommendations: For versions prior to 3.0.11, update to version 3.0.11 or later to resolve the issue. As a temporary workaround, consider disabling Java applet loading until a patch is available. Restrict access to pages that load Java applets to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Explorer version 7 **Description** The issue allows remote attackers to prevent users from leaving a site, spoof the address bar, and conduct phishing and other attacks. Spoofing vulnerabilities exist that could allow an attacker to display spoofed content in a browser window, where the address bar and other parts of the trust UI have been navigated away from the attacker's Web site but the content of the window still contains the attacker's Web page. **Recommendations** For Microsoft Internet Explorer version 7, consider disabling the use of onUnload Javascript handlers as a temporary workaround to minimize the risk of exploitation. Restrict access to potentially malicious Web sites to prevent spoofing attacks.

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer version 6 Description: A remote code execution issue exists due to attempts to access previously freed memory when handling script errors in certain situations. An attacker could exploit this by constructing a specially crafted Web page. If a user viewed the Web page, it could allow remote code execution, potentially giving an attacker complete control of an affected system. Recommendations: For Microsoft Internet Explorer version 6, consider avoiding the use of JavaScript on untrusted web pages until a fix is available. As a temporary workaround, restrict access to web pages that may exploit this issue to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Opera versions prior to 9.0 **Description** The issue allows remote attackers to spoof a trusted SSL certificate from an untrusted website, facilitating phishing attacks, by not resetting the SSL security bar after displaying a download dialog from an SSL-enabled website. **Recommendations** For Opera versions prior to 9.0, update to version 9.0 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Explorer versions 5.01 through 6 **Description** The issue is related to design errors that allow user-assisted attackers to execute arbitrary code. This is achieved by overlaying a malicious new window above a file download box and then using a keyboard shortcut. The file download box is delayed until the user hits a shortcut that activates the "Run" button. **Recommendations** For Microsoft Internet Explorer versions 5.01 through 6, update to a version that addresses the "File Download Dialog Box Manipulation" issue to prevent exploitation.

**Name of the Vulnerable Software and Affected Versions** Opera versions prior to 8.50 **Description** The issue allows remote attackers to inject arbitrary web script and potentially spoof attachment filenames by opening attached files from the user's cache directory without warning. This might occur when arbitrary JavaScript is executed in the context of "file://", potentially leading to a loss of confidentiality if a user chooses to view an attachment. **Recommendations** For Opera versions prior to 8.50, update to version 8.50 or later to resolve the issue. As a temporary workaround, consider avoiding the execution of arbitrary JavaScript in the context of "file://" and be cautious when viewing attachments to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Opera versions prior to 8.50 **Description** The issue allows remote attackers to spoof the content type of files by appending a trailing "." (dot) to a filename. This could trick users into processing dangerous content, potentially leading to the execution of arbitrary code. It might also enable script insertion attacks if a user chooses to view an attachment, resulting in a loss of confidentiality. **Recommendations** For Opera versions prior to 8.50, update to version 8.50 or later to resolve the issue. As a temporary workaround, consider avoiding the use of filenames with trailing "." (dot) characters to minimize the risk of exploitation. Restrict access to potentially dangerous file types and exercise caution when viewing attachments to reduce the risk of arbitrary code execution.

**Name of the Vulnerable Software and Affected Versions** SqWebMail version 5.0.4 **Description** A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML via an e-mail message containing Internet Explorer "Conditional Comments" such as `[if]` and `[endif]`. **Recommendations** For SqWebMail version 5.0.4, update to a version that fixes this issue, as the current version allows for the injection of malicious scripts through specially crafted email messages.

**Name of the Vulnerable Software and Affected Versions** SqWebMail versions 5.0.4 and possibly other versions **Description** The issue is related to a cross-site scripting (XSS) vulnerability. It allows remote attackers to inject arbitrary web script or HTML via an HTML e-mail containing tags with strings that contain ">" or other special characters. This occurs because SqWebMail does not properly sanitize these inputs. **Recommendations** For SqWebMail version 5.0.4, update to a version that properly sanitizes HTML e-mail inputs to prevent XSS attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SqWebMail version 5.0.4 **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via a file attachment processed by the Display feature. The severity of this issue has been disputed by the developer. **Recommendations** For SqWebMail version 5.0.4, consider disabling the Display feature for file attachments until a patch is available to prevent exploitation of the XSS issue.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 1.0.1 Mozilla versions prior to 1.7.6 **Description** The issue allows remote malicious web sites to spoof legitimate sites and facilitate phishing attacks by truncating long sub-domains or paths for display. **Recommendations** For Firefox versions prior to 1.0.1, update to version 1.0.1 or later to resolve the issue. For Mozilla versions prior to 1.7.6, update to version 1.7.6 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Firefox versions prior to 1.0 Mozilla versions prior to 1.7.5 Description: The issue allows inactive tabs to focus on input being entered in the active tab, which could allow remote attackers to steal sensitive data intended for other sites, potentially facilitating phishing attacks. Recommendations: For Firefox versions prior to 1.0, update to version 1.0 or later to resolve the issue. For Mozilla versions prior to 1.7.5, update to version 1.7.5 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Firefox versions prior to 1.0 Mozilla versions prior to 1.7.5 Description: The issue allows inactive tabs to launch dialog boxes, which can be exploited by remote attackers to spoof dialog boxes from other web sites, facilitating phishing attacks. Recommendations: For Firefox versions prior to 1.0, update to version 1.0 or later to resolve the issue. For Mozilla versions prior to 1.7.5, update to version 1.7.5 or later to resolve the issue.