Mozilla Firefox Malformed XBL Constructor Remote Denial of Service Vulnerability

Bugtraq ID:	26172
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Oct 22 2007 12:00AM
Updated:	Oct 24 2007 11:47AM
Credit:	Soroush Dalili and Shahin Ramezani from Astalavista.ir are credited with the discovery of this issue.
Vulnerable:	Redhat Fedora 7 Mozilla Firefox 2.0 .7
Not Vulnerable:	Mozilla Firefox 2.0 .8

Mozilla Firefox Malformed XBL Constructor Remote Denial of Service Vulnerability

Mozilla Firefox is prone to a remote denial-of-service vulnerability because it fails to adequately sanitize user-supplied input.

Attackers can exploit this issue to cause denial-of-service conditions.

Firefox 2.0.0.7 is vulnerable; other versions may also be affected.

Mozilla Firefox Malformed XBL Constructor Remote Denial of Service Vulnerability

An attacker can exploit this issue by enticing an unsuspecting victim to view a malicious HTML page.

The following exploit code is available:

• /data/vulnerabilities/exploits/26172.html

Mozilla Firefox Malformed XBL Constructor Remote Denial of Service Vulnerability

Solution:
The vendor released versions 2.0.0.8 to address this issue. Please see the references for information.


Mozilla Firefox 2.0 .7

• Mozilla Firefox 2.0.0.8
  http://www.mozilla.com/en-US/firefox/

Mozilla Firefox Malformed XBL Constructor Remote Denial of Service Vulnerability

References:

• Firefox Release Notes (Mozilla)
  
• Vendor Homepage (Mozilla Foundation)