CVE-2009-1312
published 2009-04-22CVE-2009-1312: Mozilla Firefox before 3.0.9 and SeaMonkey 1.1.17 do not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct…
PriorityP420medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
5.56%
91.9th percentile
Mozilla Firefox before 3.0.9 and SeaMonkey 1.1.17 do not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to (1) injecting a Refresh header or (2) specifying the content of a Refresh header. NOTE: it was later reported that Firefox 3.6 a1 pre and Mozilla 1.7.x and earlier are also affected.
Affected
122 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| chrome | <= 1.0.154.48 | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| chrome | — | — | |
| microsoft | internet_explorer | — | — |
| mozilla | firefox | <= 3.0.8 | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
vendor_ubuntu5.8MEDIUM
vendor_redhat4.3MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-8jfm-rmxf-hfp3: Google Chrome 1
ghsa_unreviewed·2022-05-02·CVSS 4.3
CVE-2009-2352 [MEDIUM] CWE-79 GHSA-8jfm-rmxf-hfp3: Google Chrome 1
Google Chrome 1.0.154.48 and earlier does not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to (1) injecting a Refresh header or (2) specifying the content of a Refresh header, a related issue to CVE-2009-1312. NOTE: it was later reported that 2.0.172.28, 2.0.172.37, and 3.0.193.2 Beta are also affected.
GHSA
GHSA-599h-6j66-vpc4: Opera 9
ghsa_unreviewed·2022-05-02·CVSS 4.3
CVE-2009-2351 [MEDIUM] CWE-79 GHSA-599h-6j66-vpc4: Opera 9
Opera 9.52 and earlier does not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to (1) injecting a Refresh header or (2) specifying the content of a Refresh header, a related issue to CVE-2009-1312. NOTE: it was later reported that 10.00 Beta 3 Build 1699 is also affected.
GHSA
GHSA-qvrc-hgq4-x7gw: Microsoft Internet Explorer 6
ghsa_unreviewed·2022-05-02·CVSS 4.3
CVE-2009-2350 [MEDIUM] CWE-79 GHSA-qvrc-hgq4-x7gw: Microsoft Internet Explorer 6
Microsoft Internet Explorer 6.0.2900.2180 and earlier does not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to (1) injecting a Refresh header or (2) specifying the content of a Refresh header, a related issue to CVE-2009-1312.
GHSA
GHSA-3mmx-h8fr-v7j4: Mozilla Firefox before 3
ghsa_unreviewed·2022-05-02
CVE-2009-1312 [MEDIUM] GHSA-3mmx-h8fr-v7j4: Mozilla Firefox before 3
Mozilla Firefox before 3.0.9 and SeaMonkey 1.1.17 do not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to (1) injecting a Refresh header or (2) specifying the content of a Refresh header. NOTE: it was later reported that Firefox 3.6 a1 pre and Mozilla 1.7.x and earlier are also affected.
Ubuntu
Firefox and Xulrunner vulnerabilities
vendor_ubuntu·2009-04-23·CVSS 5.8
CVE-2009-1302 [MEDIUM] Firefox and Xulrunner vulnerabilities
Title: Firefox and Xulrunner vulnerabilities
Summary: Firefox and Xulrunner vulnerabilities
Several flaws were discovered in the browser engine. If a user were tricked
into viewing a malicious website, a remote attacker could cause a denial of
service or possibly execute arbitrary code with the privileges of the user
invoking the program. (CVE-2009-1302, CVE-2009-1303, CVE-2009-1304,
CVE-2009-1305)
It was discovered that Firefox displayed certain Unicode characters which
could be visually confused with punctuation in valid web addresses in the
location bar. An attacker could exploit this to spoof the location bar,
such as in a phishing attack. (CVE-2009-0652)
Several flaws were discovered in the way Firefox processed malformed URI
schemes. If a user were tricked into viewing a maliciou
Red Hat
javascript: URIs
vendor_redhat·2009-04-21·CVSS 4.3
CVE-2009-1312 [MEDIUM] javascript: URIs
javascript: URIs
Mozilla Firefox before 3.0.9 and SeaMonkey 1.1.17 do not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to (1) injecting a Refresh header or (2) specifying the content of a Refresh header. NOTE: it was later reported that Firefox 3.6 a1 pre and Mozilla 1.7.x and earlier are also affected.
No detection rules found.
http://ha.ckers.org/blog/20070309/firefox-header-redirection-javascript-execution/http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.htmlhttp://rhn.redhat.com/errata/RHSA-2009-0437.htmlhttp://secunia.com/advisories/34758http://secunia.com/advisories/34843http://secunia.com/advisories/34844http://secunia.com/advisories/34894http://secunia.com/advisories/35065http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1http://websecurity.com.ua/3275/http://websecurity.com.ua/3386/http://www.mandriva.com/security/advisories?name=MDVSA-2009:111http://www.mozilla.org/security/announce/2009/mfsa2009-22.htmlhttp://www.redhat.com/support/errata/RHSA-2009-0436.htmlhttp://www.securityfocus.com/archive/1/504718/100/0/threadedhttp://www.securityfocus.com/archive/1/504723/100/0/threadedhttp://www.securityfocus.com/bid/34656http://www.securitytracker.com/id?1022096http://www.vupen.com/english/advisories/2009/1125https://bugzilla.mozilla.org/show_bug.cgi?id=475636https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6064https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6131https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6731https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9818https://usn.ubuntu.com/764-1/https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00683.htmlhttp://ha.ckers.org/blog/20070309/firefox-header-redirection-javascript-execution/http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.htmlhttp://rhn.redhat.com/errata/RHSA-2009-0437.htmlhttp://secunia.com/advisories/34758http://secunia.com/advisories/34843http://secunia.com/advisories/34844http://secunia.com/advisories/34894http://secunia.com/advisories/35065http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1http://websecurity.com.ua/3275/http://websecurity.com.ua/3386/http://www.mandriva.com/security/advisories?name=MDVSA-2009:111http://www.mozilla.org/security/announce/2009/mfsa2009-22.htmlhttp://www.redhat.com/support/errata/RHSA-2009-0436.htmlhttp://www.securityfocus.com/archive/1/504718/100/0/threadedhttp://www.securityfocus.com/archive/1/504723/100/0/threadedhttp://www.securityfocus.com/bid/34656http://www.securitytracker.com/id?1022096http://www.vupen.com/english/advisories/2009/1125https://bugzilla.mozilla.org/show_bug.cgi?id=475636https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6064https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6131https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6731https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9818https://usn.ubuntu.com/764-1/https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00683.html
2009-04-22
Published