CVE-2007-3845

Mozilla Firefox before 2.0.0.6, Thunderbird before 1.5.0.13 and 2.x before 2.0.0.6, and SeaMonkey before 1.1.4 allow remote attackers to execute arbitrary commands via certain vectors associated with launching "a file handling program based on the file extension at the end of the URI," a variant of CVE-2007-4041. NOTE: the vendor states that "it is still possible to launch a filetype handler based on extension rather than the registered protocol handler."

CVSS v2.0 9.3 HIGH

9.3^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://bugzilla.mozilla.org/show_bug.cgi?id=389580
http://www.mozilla.org/security/announce/2007/mfsa2007-27.html
https://issues.rpath.com/browse/RPL-1600
http://www.debian.org/security/2007/dsa-1344
http://www.debian.org/security/2007/dsa-1345
http://www.debian.org/security/2007/dsa-1346
http://www.debian.org/security/2007/dsa-1391
http://www.mandriva.com/security/advisories?name=MDKSA-2007:152
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.010101
http://www.ubuntu.com/usn/usn-493-1
http://www.ubuntu.com/usn/usn-503-1
http://secunia.com/advisories/26234
http://secunia.com/advisories/26258
http://secunia.com/advisories/26309
http://secunia.com/advisories/26331
http://secunia.com/advisories/26335
http://secunia.com/advisories/26303
http://secunia.com/advisories/26393
http://secunia.com/advisories/26572
http://secunia.com/advisories/27326
http://secunia.com/advisories/27414
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103177-1
http://secunia.com/advisories/28135
https://bugzilla.mozilla.org/show_bug.cgi?id=389106
http://www.mandriva.com/security/advisories?name=MDVSA-2007:047
http://www.securityfocus.com/bid/25053
http://www.mandriva.com/security/advisories?name=MDVSA-2008:047
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201516-1
http://www.vupen.com/english/advisories/2007/4256
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00774579
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742
http://www.vupen.com/english/advisories/2008/0082
http://www.securityfocus.com/archive/1/475450/30/5550/threaded
http://www.securityfocus.com/archive/1/475265/100/200/threaded

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:microsoft:windows_xp:*:*:*:*:*:*:*:*

OR	cpe:2.3:a:mozilla:firefox:2.0.0.5:::::::*
	cpe:2.3:a:mozilla:seamonkey:1.1.3:::::::*
	cpe:2.3:a:mozilla:thunderbird:2.0.0.5:::::::*

Information

Published : 2007-08-07 18:17

Updated : 2023-02-12 18:18

NVD link : CVE-2007-3845

Mitre link : CVE-2007-3845

JSON object : View

CWE

NVD-CWE-noinfo

Products Affected

microsoft

windows_xp

mozilla

firefox
seamonkey
thunderbird

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://bugzilla.mozilla.org/show_bug.cgi?id=389580", "name": "http://bugzilla.mozilla.org/show_bug.cgi?id=389580", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.mozilla.org/security/announce/2007/mfsa2007-27.html", "name": "http://www.mozilla.org/security/announce/2007/mfsa2007-27.html", "tags": [], "refsource": "CONFIRM"}, {"url": "https://issues.rpath.com/browse/RPL-1600", "name": "https://issues.rpath.com/browse/RPL-1600", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.debian.org/security/2007/dsa-1344", "name": "DSA-1344", "tags": [], "refsource": "DEBIAN"}, {"url": "http://www.debian.org/security/2007/dsa-1345", "name": "DSA-1345", "tags": [], "refsource": "DEBIAN"}, {"url": "http://www.debian.org/security/2007/dsa-1346", "name": "DSA-1346", "tags": [], "refsource": "DEBIAN"}, {"url": "http://www.debian.org/security/2007/dsa-1391", "name": "DSA-1391", "tags": [], "refsource": "DEBIAN"}, {"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:152", "name": "MDKSA-2007:152", "tags": [], "refsource": "MANDRIVA"}, {"url": "http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.010101", "name": "SSA:2007-213-01", "tags": [], "refsource": "SLACKWARE"}, {"url": "http://www.ubuntu.com/usn/usn-493-1", "name": "USN-493-1", "tags": [], "refsource": "UBUNTU"}, {"url": "http://www.ubuntu.com/usn/usn-503-1", "name": "USN-503-1", "tags": [], "refsource": "UBUNTU"}, {"url": "http://secunia.com/advisories/26234", "name": "26234", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/26258", "name": "26258", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/26309", "name": "26309", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/26331", "name": "26331", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/26335", "name": "26335", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/26303", "name": "26303", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/26393", "name": "26393", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/26572", "name": "26572", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/27326", "name": "27326", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/27414", "name": "27414", "tags": [], "refsource": "SECUNIA"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-103177-1", "name": "103177", "tags": [], "refsource": "SUNALERT"}, {"url": "http://secunia.com/advisories/28135", "name": "28135", "tags": [], "refsource": "SECUNIA"}, {"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=389106", "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=389106", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2007:047", "name": "MDVSA-2007:047", "tags": [], "refsource": "MANDRIVA"}, {"url": "http://www.securityfocus.com/bid/25053", "name": "25053", "tags": [], "refsource": "BID"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:047", "name": "MDVSA-2008:047", "tags": [], "refsource": "MANDRIVA"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-201516-1", "name": "201516", "tags": [], "refsource": "SUNALERT"}, {"url": "http://www.vupen.com/english/advisories/2007/4256", "name": "ADV-2007-4256", "tags": [], "refsource": "VUPEN"}, {"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00774579", "name": "HPSBUX02156", "tags": [], "refsource": "HP"}, {"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742", "name": "HPSBUX02153", "tags": [], "refsource": "HP"}, {"url": "http://www.vupen.com/english/advisories/2008/0082", "name": "ADV-2008-0082", "tags": [], "refsource": "VUPEN"}, {"url": "http://www.securityfocus.com/archive/1/475450/30/5550/threaded", "name": "20070803 FLEA-2007-0040-1 thunderbird", "tags": [], "refsource": "BUGTRAQ"}, {"url": "http://www.securityfocus.com/archive/1/475265/100/200/threaded", "name": "20070801 FLEA-2007-0039-1 firefox", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Mozilla Firefox before 2.0.0.6, Thunderbird before 1.5.0.13 and 2.x before 2.0.0.6, and SeaMonkey before 1.1.4 allow remote attackers to execute arbitrary commands via certain vectors associated with launching \"a file handling program based on the file extension at the end of the URI,\" a variant of CVE-2007-4041. NOTE: the vendor states that \"it is still possible to launch a filetype handler based on extension rather than the registered protocol handler.\""}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2007-3845", "ASSIGNER": "secalert@redhat.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}}, "publishedDate": "2007-08-08T01:17Z", "configurations": {"nodes": [{"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_xp:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.1.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "operator": "AND", "cpe_match": []}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2023-02-13T02:18Z"}

9.3 /10