Intrusion Prevention

Mozilla.Firefox.xdg-open.mailcap.File.Remote.Code.Execution

Description

This indicates an attack attempt against a remote code execution vulnerability in Mozilla Firefox.
The vulnerability is caused by improperly validating the MIME type of files before calling the 'xdg-open' utility. Attackers can exploit it to execute arbitrary code.

Affected Products

Mozilla Firefox 3.0.5
Mozilla Firefox 3.0.4
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.1
Mozilla Firefox 3.0 Beta 5
Mozilla Firefox 3.0

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Currently we are not aware of any vendor supplied patch for this issue.

CVE References

CVE-2009-0068