Mozilla has released an update of its popular Firefox browser to address a pile of security flaws attackers could exploit to tamper with sensitive information, conduct phishing attacks and run malicious code.
The "highly critical" issues are being addressed in version 18.104.22.168 of the Firefox browser. Danish vulnerability clearinghouse Secunia outlined the issues in its SA27311 advisory:
1.) Various errors in the browser engine can be exploited to cause a memory corruption.
3.) An error in the handling of onUnload events can be exploited to read and manipulate the document's location of new pages.
4.) Input passed to the user ID when making an HTTP request using Digest Authentication is not properly sanitized before being used in a request. This can be exploited to insert arbitrary HTTP headers into a user's request when a proxy is used.
5.) An error when displaying web pages written in the XUL markup language can be exploited to hide the window's title bar and facilitate phishing attacks.
6.) An error exists in the handling of "smb:" and "sftp:" URI schemes on Linux systems with gnome-vfs support. This can be exploited to read any file owned by the target user via a specially crafted page on the same server. "Successful exploitation requires that the attacker has write access to a mutually accessible location on the target server and the user is tricked into loading the malicious page," Secunia said.
Secunia noted that additional fixes have been added to prevent the exploitation of a URI handling vulnerability in Microsoft Windows. The advisory links to all the individual Mozilla advisories.