Mozilla.Firefox.xdg-open.mailcap.File.Remote.Code.Execution
Description
This indicates an attack attempt against a remote code execution vulnerability in Mozilla Firefox.
The vulnerability is caused by improperly validating the MIME type of files before calling the 'xdg-open' utility. Attackers can exploit it to execute arbitrary code.
Affected Products
Mozilla Firefox 3.0.5
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0 Beta 5
Mozilla Firefox 3.0
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Currently we are not aware of any vendor supplied patch for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |