FKIE_CVE-2007-3845

Vulnerability from fkie_nvd - Published: 2007-08-08 01:17 - Updated: 2025-04-09 00:30
Severity ?
Summary
Mozilla Firefox before 2.0.0.6, Thunderbird before 1.5.0.13 and 2.x before 2.0.0.6, and SeaMonkey before 1.1.4 allow remote attackers to execute arbitrary commands via certain vectors associated with launching "a file handling program based on the file extension at the end of the URI," a variant of CVE-2007-4041. NOTE: the vendor states that "it is still possible to launch a filetype handler based on extension rather than the registered protocol handler."
References
secalert@redhat.comhttp://bugzilla.mozilla.org/show_bug.cgi?id=389580
secalert@redhat.comhttp://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742
secalert@redhat.comhttp://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00774579
secalert@redhat.comhttp://secunia.com/advisories/26234
secalert@redhat.comhttp://secunia.com/advisories/26258
secalert@redhat.comhttp://secunia.com/advisories/26303
secalert@redhat.comhttp://secunia.com/advisories/26309
secalert@redhat.comhttp://secunia.com/advisories/26331
secalert@redhat.comhttp://secunia.com/advisories/26335
secalert@redhat.comhttp://secunia.com/advisories/26393
secalert@redhat.comhttp://secunia.com/advisories/26572
secalert@redhat.comhttp://secunia.com/advisories/27326
secalert@redhat.comhttp://secunia.com/advisories/27414
secalert@redhat.comhttp://secunia.com/advisories/28135
secalert@redhat.comhttp://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.010101
secalert@redhat.comhttp://sunsolve.sun.com/search/document.do?assetkey=1-26-103177-1
secalert@redhat.comhttp://sunsolve.sun.com/search/document.do?assetkey=1-66-201516-1
secalert@redhat.comhttp://www.debian.org/security/2007/dsa-1344
secalert@redhat.comhttp://www.debian.org/security/2007/dsa-1345
secalert@redhat.comhttp://www.debian.org/security/2007/dsa-1346
secalert@redhat.comhttp://www.debian.org/security/2007/dsa-1391
secalert@redhat.comhttp://www.mandriva.com/security/advisories?name=MDKSA-2007:152
secalert@redhat.comhttp://www.mandriva.com/security/advisories?name=MDVSA-2007:047
secalert@redhat.comhttp://www.mandriva.com/security/advisories?name=MDVSA-2008:047
secalert@redhat.comhttp://www.mozilla.org/security/announce/2007/mfsa2007-27.html
secalert@redhat.comhttp://www.securityfocus.com/archive/1/475265/100/200/threaded
secalert@redhat.comhttp://www.securityfocus.com/archive/1/475450/30/5550/threaded
secalert@redhat.comhttp://www.securityfocus.com/bid/25053
secalert@redhat.comhttp://www.ubuntu.com/usn/usn-493-1
secalert@redhat.comhttp://www.ubuntu.com/usn/usn-503-1
secalert@redhat.comhttp://www.vupen.com/english/advisories/2007/4256
secalert@redhat.comhttp://www.vupen.com/english/advisories/2008/0082
secalert@redhat.comhttps://bugzilla.mozilla.org/show_bug.cgi?id=389106
secalert@redhat.comhttps://issues.rpath.com/browse/RPL-1600
af854a3a-2127-422b-91ae-364da2661108http://bugzilla.mozilla.org/show_bug.cgi?id=389580
af854a3a-2127-422b-91ae-364da2661108http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742
af854a3a-2127-422b-91ae-364da2661108http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00774579
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/26234
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/26258
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/26303
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/26309
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/26331
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/26335
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/26393
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/26572
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/27326
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/27414
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/28135
af854a3a-2127-422b-91ae-364da2661108http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.010101
af854a3a-2127-422b-91ae-364da2661108http://sunsolve.sun.com/search/document.do?assetkey=1-26-103177-1
af854a3a-2127-422b-91ae-364da2661108http://sunsolve.sun.com/search/document.do?assetkey=1-66-201516-1
af854a3a-2127-422b-91ae-364da2661108http://www.debian.org/security/2007/dsa-1344
af854a3a-2127-422b-91ae-364da2661108http://www.debian.org/security/2007/dsa-1345
af854a3a-2127-422b-91ae-364da2661108http://www.debian.org/security/2007/dsa-1346
af854a3a-2127-422b-91ae-364da2661108http://www.debian.org/security/2007/dsa-1391
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDKSA-2007:152
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDVSA-2007:047
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDVSA-2008:047
af854a3a-2127-422b-91ae-364da2661108http://www.mozilla.org/security/announce/2007/mfsa2007-27.html
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/475265/100/200/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/475450/30/5550/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/25053
af854a3a-2127-422b-91ae-364da2661108http://www.ubuntu.com/usn/usn-493-1
af854a3a-2127-422b-91ae-364da2661108http://www.ubuntu.com/usn/usn-503-1
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2007/4256
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2008/0082
af854a3a-2127-422b-91ae-364da2661108https://bugzilla.mozilla.org/show_bug.cgi?id=389106
af854a3a-2127-422b-91ae-364da2661108https://issues.rpath.com/browse/RPL-1600
Impacted products
Vendor Product Version
microsoft windows_xp *
mozilla firefox 2.0.0.5
mozilla seamonkey 1.1.3
mozilla thunderbird 2.0.0.5
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_xp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E61F1C9B-44AF-4B35-A7B2-948EEF7639BD",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:mozilla:firefox:2.0.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "58D44634-A0B5-4F05-8983-B08D392EC742",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:mozilla:seamonkey:1.1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "7F65732F-317B-49A2-B9B0-FA1102B8B45C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:mozilla:thunderbird:2.0.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "5C9218A9-DA27-436A-AC93-F465FC14ECF3",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Mozilla Firefox before 2.0.0.6, Thunderbird before 1.5.0.13 and 2.x before 2.0.0.6, and SeaMonkey before 1.1.4 allow remote attackers to execute arbitrary commands via certain vectors associated with launching \"a file handling program based on the file extension at the end of the URI,\" a variant of CVE-2007-4041.  NOTE: the vendor states that \"it is still possible to launch a filetype handler based on extension rather than the registered protocol handler.\""
    },
    {
      "lang": "es",
      "value": "Mozilla Firefox anterior a 2.0.0.6, Thunderbird anterior a 1.5.0.13 y 2.x anterior a 2.0.0.6, y SeaMonkey anterior a 1.1.4 permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n mediante ciertos vectores asociados con el lanzamiento de \"un programa de manejo de ficheros basado en  la extensi\u00f3n del fichero al final del URI\", una variante de CVE-2007-4041. El vendedor afirma que \"todav\u00eda es posible lanzar un manipulador de tipo de fichero basado en la extensi\u00f3n en lugar de el manipulador de protocolo registrado\"."
    }
  ],
  "id": "CVE-2007-3845",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.3,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 10.0,
        "obtainAllPrivilege": true,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2007-08-08T01:17:00.000",
  "references": [
    {
      "source": "secalert@redhat.com",
      "url": "http://bugzilla.mozilla.org/show_bug.cgi?id=389580"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00774579"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/26234"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/26258"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/26303"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/26309"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/26331"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/26335"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/26393"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/26572"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/27326"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/27414"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/28135"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2007\u0026m=slackware-security.010101"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-103177-1"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-201516-1"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.debian.org/security/2007/dsa-1344"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.debian.org/security/2007/dsa-1345"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.debian.org/security/2007/dsa-1346"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.debian.org/security/2007/dsa-1391"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:152"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2007:047"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:047"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.mozilla.org/security/announce/2007/mfsa2007-27.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securityfocus.com/archive/1/475265/100/200/threaded"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securityfocus.com/archive/1/475450/30/5550/threaded"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securityfocus.com/bid/25053"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.ubuntu.com/usn/usn-493-1"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.ubuntu.com/usn/usn-503-1"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.vupen.com/english/advisories/2007/4256"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.vupen.com/english/advisories/2008/0082"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=389106"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://issues.rpath.com/browse/RPL-1600"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://bugzilla.mozilla.org/show_bug.cgi?id=389580"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00774579"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/26234"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/26258"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/26303"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/26309"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/26331"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/26335"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/26393"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/26572"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/27326"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/27414"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/28135"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2007\u0026m=slackware-security.010101"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-103177-1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-201516-1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2007/dsa-1344"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2007/dsa-1345"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2007/dsa-1346"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2007/dsa-1391"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:152"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2007:047"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:047"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mozilla.org/security/announce/2007/mfsa2007-27.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/475265/100/200/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/475450/30/5550/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/25053"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.ubuntu.com/usn/usn-493-1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.ubuntu.com/usn/usn-503-1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2007/4256"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2008/0082"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=389106"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://issues.rpath.com/browse/RPL-1600"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vendorComments": [
    {
      "comment": "Not vulnerable. This issue does not affect the versions of Firefox or Thunderbird as shipped with Red Hat Enterprise Linux.",
      "lastModified": "2007-10-10T00:00:00",
      "organization": "Red Hat"
    }
  ],
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.