Mozilla Firefox Directory Traversal Vulnerability
Severity: : Medium
CVE Kennungen: : CVE-2008-4067
Advisory Date: 21 de lipca de 2015
DESCRIPTION
Directory traversal vulnerability in Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 on Linux allows remote attackers to read arbitrary files via a .. (dot dot) and URL-encoded / (slash) characters in a resource: URI.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1002881
Trend Micro Deep Security DPI Rule Name: 1002881 - Mozilla Firefox Directory Traversal Vulnerability
AFFECTED SOFTWARE AND VERSION:
- mozilla thunderbird 1.5.0.9
- mozilla thunderbird 1.5.1
- mozilla thunderbird 1.5.2
- mozilla thunderbird 1.7.1
- mozilla thunderbird 1.7.3
- mozilla thunderbird 2.0.0.0
- mozilla thunderbird 2.0.0.1
- mozilla thunderbird 2.0.0.11
- mozilla thunderbird 2.0.0.12
- mozilla thunderbird 2.0.0.13
- mozilla thunderbird 2.0.0.14
- mozilla thunderbird 2.0.0.15
- mozilla thunderbird 2.0.0.16
- mozilla thunderbird 2.0.0.2
- mozilla thunderbird 2.0.0.3
- mozilla thunderbird 2.0.0.4
- mozilla thunderbird 2.0.0.5
- mozilla thunderbird 2.0.0.6
- mozilla thunderbird 2.0.0.8
- mozilla thunderbird 2.0.0.9
- mozilla thunderbird 2.0_.12
- mozilla thunderbird 2.0_.13
- mozilla thunderbird 2.0_.14
- mozilla thunderbird 2.0_.4
- mozilla thunderbird 2.0_.5
- mozilla thunderbird 2.0_.6
- mozilla thunderbird 2.0_.9
- mozilla thunderbird 2.0_8
- mozilla firefox 0.10
- mozilla firefox 0.10.1
- mozilla firefox 0.8
- mozilla firefox 0.9
- mozilla firefox 0.9.1
- mozilla firefox 0.9.2
- mozilla firefox 0.9.3
- mozilla firefox 0.9_rc
- mozilla firefox 1.0
- mozilla firefox 1.0.1
- mozilla firefox 1.0.2
- mozilla firefox 1.0.3
- mozilla firefox 1.0.4
- mozilla firefox 1.0.5
- mozilla firefox 1.0.6
- mozilla firefox 1.0.7
- mozilla firefox 1.0.8
- mozilla firefox 1.5
- mozilla firefox 1.5.0.1
- mozilla firefox 1.5.0.10
- mozilla firefox 1.5.0.11
- mozilla firefox 1.5.0.12
- mozilla firefox 1.5.0.2
- mozilla firefox 1.5.0.3
- mozilla firefox 1.5.0.4
- mozilla firefox 1.5.0.5
- mozilla firefox 1.5.0.6
- mozilla firefox 1.5.0.7
- mozilla firefox 1.5.0.8
- mozilla firefox 1.5.0.9
- mozilla firefox 1.5.1
- mozilla firefox 1.5.2
- mozilla firefox 1.5.3
- mozilla firefox 1.5.4
- mozilla firefox 1.5.5
- mozilla firefox 1.5.6
- mozilla firefox 1.5.7
- mozilla firefox 1.5.8
- mozilla firefox 1.8
- mozilla firefox 2.0
- mozilla firefox 2.0.0.1
- mozilla firefox 2.0.0.10
- mozilla firefox 2.0.0.11
- mozilla firefox 2.0.0.12
- mozilla firefox 2.0.0.13
- mozilla firefox 2.0.0.14
- mozilla firefox 2.0.0.15
- mozilla firefox 2.0.0.16
- mozilla firefox 3.0
- mozilla firefox 3.0.1
- mozilla seamonkey 1.0
- mozilla seamonkey 1.0.1
- mozilla seamonkey 1.0.2
- mozilla seamonkey 1.0.3
- mozilla seamonkey 1.0.4
- mozilla seamonkey 1.0.5
- mozilla seamonkey 1.0.6
- mozilla seamonkey 1.0.7
- mozilla seamonkey 1.0.8
- mozilla seamonkey 1.0.9
- mozilla seamonkey 1.0.99
- mozilla seamonkey 1.1
- mozilla seamonkey 1.1.1
- mozilla seamonkey 1.1.10
- mozilla seamonkey 1.1.11
- mozilla thunderbird 0.1
- mozilla thunderbird 0.2
- mozilla thunderbird 0.3
- mozilla thunderbird 0.4
- mozilla thunderbird 0.5
- mozilla thunderbird 0.6
- mozilla thunderbird 0.7
- mozilla thunderbird 0.7.1
- mozilla thunderbird 0.7.2
- mozilla thunderbird 0.7.3
- mozilla thunderbird 0.8
- mozilla thunderbird 0.9
- mozilla thunderbird 1.0
- mozilla thunderbird 1.0.1
- mozilla thunderbird 1.0.2
- mozilla thunderbird 1.0.3
- mozilla thunderbird 1.0.4
- mozilla thunderbird 1.0.5
- mozilla thunderbird 1.0.6
- mozilla thunderbird 1.0.7
- mozilla thunderbird 1.0.8
- mozilla thunderbird 1.5
- mozilla thunderbird 1.5.0.1
- mozilla thunderbird 1.5.0.10
- mozilla thunderbird 1.5.0.11
- mozilla thunderbird 1.5.0.2
- mozilla thunderbird 1.5.0.3
- mozilla thunderbird 1.5.0.4
- mozilla thunderbird 1.5.0.5
- mozilla thunderbird 1.5.0.6
- mozilla thunderbird 1.5.0.7
- mozilla thunderbird 1.5.0.8