CVE-2009-2654

Mozilla Firefox <3.0.13, 3.5.x <3.5.2 - XSS

Title source: llm

Description

Mozilla Firefox before 3.0.13, and 3.5.x before 3.5.2, allows remote attackers to spoof the address bar, and possibly conduct phishing attacks, via a crafted web page that calls window.open with an invalid character in the URL, makes document.write calls to the resulting object, and then calls the stop method during the loading of the error page.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Juan Pablo Lopez Yacubian · htmlremotelinux

https://www.exploit-db.com/exploits/33103

View Code ZIP pw:eip

References (26)

[Patch, Vendor Advisory] http://blog.mozilla.com/security/2009/07/28/url-bar-spoofing-vulnerability/

[Various Sources] http://es.geocities.com/jplopezy/firefoxspoofing.html

[Vendor Advisory] http://secunia.com/advisories/36001

[Vendor Advisory] http://secunia.com/advisories/36126

[Vendor Advisory] http://secunia.com/advisories/36141

[Vendor Advisory] http://secunia.com/advisories/36435

[Vendor Advisory] http://sunsolve.sun.com/search/document.do?assetkey=1-66-266148-1

[Patch, Vendor Advisory] http://www.mozilla.org/security/announce/2009/mfsa2009-44.html

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2009-1430.html

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2009-1431.html

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2009-1432.html

[Exploit] http://www.securityfocus.com/archive/1/505242/30/0/threaded

[Exploit, Patch] http://www.securityfocus.com/bid/35803

[Patch, Vendor Advisory] http://www.vupen.com/english/advisories/2009/2006

[Patch, Vendor Advisory] http://www.vupen.com/english/advisories/2009/2142

[Issue Tracking] https://bugzilla.mozilla.org/show_bug.cgi?id=451898

[Vendor Advisory] https://usn.ubuntu.com/811-1/

[Vendor Advisory] https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00198.html

[Vendor Advisory] https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00261.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/505265

... and 6 more

Scores

EPSS 0.1320

EPSS Percentile 94.2%

Details

CWE

CWE-20

Status published

Products (46)

mozilla/firefox 0.1

mozilla/firefox 0.2

mozilla/firefox 0.3

mozilla/firefox 0.4

mozilla/firefox 0.5

mozilla/firefox 0.6

mozilla/firefox 0.6.1

mozilla/firefox 0.7

mozilla/firefox 0.7.1

mozilla/firefox 0.8

... and 36 more

Published Aug 03, 2009

Tracked Since Feb 18, 2026