[NT] K-Meleon Frame Injection Vulnerability

From: SecuriTeam (support_at_securiteam.com)
Date: 06/12/05

  • Next message: SecuriTeam: "[EXPL] PortailPHP SQL Injection (Exploit)" 
    To: list@securiteam.com
Date: 12 Jun 2005 13:48:29 +0200

    The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
    - - promotion

    The SecuriTeam alerts list - Free, Accurate, Independent.

    Get your security news from a reliable source.
    http://www.securiteam.com/mailinglist.html

    - - - - - - - - -

      K-Meleon Frame Injection Vulnerability
    ------------------------------------------------------------------------

    SUMMARY

    " <http://kmeleon.sourceforge.net/> K-Meleon is an extremely fast,
    customizable, lightweight web browser for the win32 (Windows) platform
    based on the Gecko layout engine (the rendering engine of Mozilla).
    K-Meleon is free, open source software released under the GNU General
    Public License."

    K-Meleon web browser allows websites to load web pages into frames of any
    other frame-based website that the user has opened.

    DETAILS

    Vulnerable Systems:
     * K-Meleon version 0.9
     * K-Meleon version 0.8.2

    A malicious website could cause K-Meleon to insert its own frames into the
    page of other websites. As a result the user may unknowingly send
    confidential information intended for the trusted website to the malicious
    website.

    ADDITIONAL INFORMATION

    The information has been provided by <mailto:juha-matti.laurio@netti.fi>
    Juha-Matti Laurio .

    ========================================

    This bulletin is sent to members of the SecuriTeam mailing list.
    To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
    In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com

    ====================
    ====================

    DISCLAIMER:
    The information in this bulletin is provided "AS IS" without warranty of any kind.
    In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.

  • Next message: SecuriTeam: "[EXPL] PortailPHP SQL Injection (Exploit)"

    Relevant Pages

    • [NEWS] Common DNS Misconfiguration can Lead to "same Site" Scripting
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... attack is trivial, for example, from a shared UNIX system, an attacker ... via) a machine that hosts another website, ... configurations for domains that host websites that rely on HTTP state ...
      (Securiteam)
    • [NEWS] Mozilla Firefox Certificate Spoofing
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... * Mozilla Firefox version 0.9.1 ... First you direct the redirection Metatag to the website of which you want ... to spoof the certificate, then inside the tag you add OnUnload ...
      (Securiteam)
    • [UNIX] Konqueror Frame Injection Vulnerability
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... A malicious website could abuse Konqueror to insert its own frames into ... The information in this bulletin is provided "AS IS" without warranty of any kind. ... In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages. ...
      (Securiteam)
    • [UNIX] lostBook Javascript Injection And Cross Site Scripting Vulnerabilities
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Although this simple guestbook application does not make use of a backend ... lostBook is vulnerable to Javascript injection and ... Name, Email, Website and Entry. ...
      (Securiteam)