Mozilla.Firefox.Location.Hostname.NULL.Byte.Spoofing

description-logoDescription

This indicates an attempt to exploit a Domain Name Spoofing vulnerability in Mozilla based browsers.
The vulnerability is caused by an error when the software handles a "hostname DOM property" with a null byte. It may allow remote attackers to bypass the "same origin" policy.

affected-products-logoAffected Products

Firefox before 1.5.0.10
Firefox 2.x before 2.0.0.2
SeaMonkey before 1.0.8

Impact logoImpact

Security Bypass.

recomended-action-logoRecommended Actions

Upgrade to the latest version,available from the web site:
http://www.mozilla.org/en-US/firefox/new/

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)