Michael Krax

Name of the Vulnerable Software and Affected Versions: Mozilla Firefox versions 1.x before 1.5 Mozilla Firefox versions 1.0.x before 1.0.8 Mozilla Suite versions prior to 1.7.13 SeaMonkey versions prior to 1.0 Description: The issue allows remote attackers to trick users into downloading and saving an executable file. This is achieved by using an image that is overlaid by a transparent image link pointing to the executable. When the user clicks the "Save image as..." option, the executable is saved. The attack is made easier due to a GUI truncation issue that prevents the user from seeing the malicious extension when there is extra whitespace in the filename. Recommendations: For Mozilla Firefox versions 1.x before 1.5, update to version 1.5 or later. For Mozilla Firefox versions 1.0.x before 1.0.8, update to version 1.0.8 or later. For Mozilla Suite versions prior to 1.7.13, update to version 1.7.13 or later. For SeaMonkey versions prior to 1.0, update to version 1.0 or later.

**Name of the Vulnerable Software and Affected Versions** Microsoft Agent (affected versions not specified) **Description** The issue allows remote attackers to spoof trusted Internet content and execute arbitrary code by disguising security prompts on a malicious Web page. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 1.0.4 Mozilla Suite versions prior to 1.7.8 **Description** The issue is related to improper implementation of security checks for script injection, allowing remote attackers to execute scripts via `javascript:` URLs. This can be achieved through various methods, including using a `javascript:` URL in a `view-source:` URL, a `javascript:` URL in a `jar:` URL, or a nested variant. **Recommendations** For Firefox versions prior to 1.0.4, update to version 1.0.4 or later to resolve the issue. For Mozilla Suite versions prior to 1.7.8, update to version 1.7.8 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 1.0.3 Mozilla Suite versions prior to 1.7.7 **Description** The issue allows remote attackers to execute arbitrary code via a <LINK rel="icon"> tag with a javascript: URL in the `href` attribute. This is related to the favicon functionality. **Recommendations** For Firefox versions prior to 1.0.3, update to version 1.0.3 or later to resolve the issue. For Mozilla Suite versions prior to 1.7.7, update to version 1.7.7 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 1.0.3 Mozilla Suite versions prior to 1.7.7 Netscape 7.2 **Description** The issue allows remote attackers to replace existing search plugins with malicious ones, potentially leading to the execution of malicious scripts. This is achieved by using the `sidebar.addSearchEngine` functionality with the same filename as the target engine, which may not be visible in the GUI. **Recommendations** For Firefox versions prior to 1.0.3, update to version 1.0.3 or later. For Mozilla Suite versions prior to 1.7.7, update to version 1.7.7 or later. For Netscape 7.2, consider disabling the search plugin functionality until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Mozilla Suite versions prior to 1.7.7 Firefox versions prior to 1.0.3 Netscape 7.2 **Description** The issue allows remote attackers to execute arbitrary script and code via a new search plugin using the `sidebar.addSearchEngine` function. **Recommendations** For Mozilla Suite versions prior to 1.7.7, update to version 1.7.7 or later. For Firefox versions prior to 1.0.3, update to version 1.0.3 or later. For Netscape 7.2, consider disabling the `sidebar.addSearchEngine` function as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Firefox version 1.0.1 Mozilla versions prior to 1.7.6 **Description** The issue allows remote attackers to execute arbitrary XUL code by tricking a user into dragging a scrollbar. This is related to insufficient addressing of attack vectors for loading chrome files and hijacking drag and drop events. **Recommendations** For Firefox version 1.0.1, update to a version that sufficiently addresses all attack vectors for loading chrome files and hijacking drag and drop events. For Mozilla versions prior to 1.7.6, update to version 1.7.6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 1.0.1 **Description** The issue allows remote attackers to spoof the security and download modal dialog boxes, which could be used to trick users into executing script or downloading and executing a file. **Recommendations** For versions prior to 1.0.1, update to version 1.0.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Firefox version 1.0 **Description** The issue allows remote attackers to execute arbitrary code via plugins that load "privileged content" into frames. This can be demonstrated using certain XUL events when a user drags a scrollbar two times. **Recommendations** For Firefox version 1.0, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Verity Ultraseek versions prior to 5.3.3 **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary HTML and web script via search parameters. **Recommendations** For versions prior to 5.3.3, update to version 5.3.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** ht://dig versions prior to 3.1.6-r7 **Description** A cross-site scripting issue allows remote attackers to execute arbitrary web script or HTML via the `config` parameter, which is not properly sanitized before it is displayed in an error message. **Recommendations** For versions prior to 3.1.6-r7, update to version 3.1.6-r7 or later to resolve the issue. As a temporary workaround, consider restricting access to the `config` parameter to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Firefox version 1.0 **Description** The issue allows remote attackers to bypass the intended restriction and execute arbitrary commands via malformed GIF files that can still be parsed by the Windows batch file parser. This occurs when an executable file with a dangerous extension, such as .bat or .exe, is dragged to the desktop despite having an image/gif content type. **Recommendations** For Firefox version 1.0, as a temporary workaround, consider restricting the dragging of files with image/gif content type to the desktop to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Firefox version 1.0 **Description** The issue allows remote attackers to modify Boolean configuration parameters for the about:config site by using a plugin such as Flash, and the -moz-opacity filter, to display the about:config site then cause the user to double-click at a certain screen position, also known as "Fireflashing." **Recommendations** For Firefox version 1.0, as a temporary workaround, consider disabling the use of plugins such as Flash until a patch is available. Restrict access to the about:config site to minimize the risk of exploitation. Avoid using the -moz-opacity filter in web pages until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Internet Explorer versions 5.01 through 6 **Description** The issue allows remote attackers to execute arbitrary code via drag and drop events. **Recommendations** For Internet Explorer versions 5.01 through 6, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Firefox version 1.0 **Description** The issue allows remote attackers to bypass the security model by dragging a javascript: or data: URL to a tab, due to the failure of invoking the Javascript Security Manager. This is related to a technique known as "firetabbing." **Recommendations** For Firefox version 1.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: CVSTrac versions prior to 1.1.5 Description: The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities are located in the main.c and login.c files, allowing remote attackers to inject arbitrary HTML and web script. Recommendations: For versions prior to 1.1.5, update to version 1.1.5 or later to resolve the issue.