Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-3670 — Cross-site Scripting in Mozilla Firefox

CWE-79 — Cross-site Scripting CWE-94 — Code Injection CWE-78 — OS Command Injection24 documents6 sources

Severity

9.8CRITICALNVD

NVD9.3NVD8.8NVD7.5NVD6.8NVD4.3

EPSS

50.1%

top 2.16%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Apple Quicktime Mozilla Firefox Microsoft Internet Explorer +2 more

Timeline

PublishedJul 10

Latest updateMay 3

Description

Argument injection vulnerability in Microsoft Internet Explorer, when running on systems with Firefox installed and certain URIs registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in a (1) FirefoxURL or (2) FirefoxHTML URI, which are inserted into the command line that is created when invoking firefox.exe. NOTE: it has been debated as to whether the issue is in Internet Explorer or Firefox. As of 20070711, it is …

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages5 packages

▶NVDmozilla/firefox2.0.0.4+3

▶NVDmicrosoft/internet_explorer6, 7, 7.0+2

▶NVDmozilla/thunderbird1.5

▶NVDapple/quicktime7.1.5

▶NVDnetscape/navigator9.0

🔴Vulnerability Details

GHSA

GHSA-qwp7-hh47-5g3h: Argument injection vulnerability in Microsoft Internet Explorer, when running on systems with Firefox installed and certain URIs registered, allows re↗2022-05-03

▶

GHSA

GHSA-5qrv-2vjc-xwcq: Argument injection vulnerability involving Mozilla, when certain URIs are registered, allows remote attackers to conduct cross-browser scripting attac↗2022-05-01

▶

GHSA

GHSA-mx2j-qfcf-xcrp: Argument injection vulnerability in Microsoft Internet Explorer, when running on systems with Netscape installed and certain URIs registered, allows r↗2022-05-01

▶

GHSA

GHSA-5457-v8jm-4679: Multiple argument injection vulnerabilities in Netscape Navigator 9 allow remote attackers to execute arbitrary commands via a NULL byte (%00) and she↗2022-05-01

▶

GHSA

GHSA-2mgm-7frw-wmjm: Argument injection vulnerability involving Microsoft Outlook and Outlook Express, when certain URIs are registered, allows remote attackers to conduct↗2022-05-01

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Internet Explorer and Mozilla Firefox - URI Handler Command Injection↗2007-07-10

▶

📋Vendor Advisories

Ubuntu

Thunderbird vulnerabilities↗2007-08-25

▶

Red Hat

CVE-2007-5045: Argument injection vulnerability in Apple QuickTime 7↗

▶

Red Hat

CVE-2007-4039: Argument injection vulnerability involving Mozilla, when certain URIs are registered, allows remote attackers to conduct cross-browser scripting attac↗

▶

Red Hat

CVE-2007-4038: Argument injection vulnerability in Mozilla Firefox before 2↗

▶

💬Community

Bugzilla

URI Handler Command Injection Vulnerability [iDefense V-bsk2ottbf1]↗2019-08-09

▶