CVE-2008-1238

Public Exploit

Description

Mozilla Firefox before 2.0.0.13 and SeaMonkey before 1.1.9, when generating the HTTP Referer header, does not list the entire URL when it contains Basic Authentication credentials without a username, which makes it easier for remote attackers to bypass application protection mechanisms that rely on Referer headers, such as with some Cross-Site Request Forgery (CSRF) mechanisms.

References

Link	Tags
http://www.securityfocus.com/archive/1/490196/100/0/threaded	mailing list
http://secunia.com/advisories/29541	third party advisory
http://secunia.com/advisories/29539	third party advisory
http://www.securitytracker.com/id?1019703	vdb entry
http://secunia.com/advisories/30620	third party advisory
http://secunia.com/advisories/29560	third party advisory
http://www.debian.org/security/2008/dsa-1532	vendor advisory
http://secunia.com/advisories/30327	third party advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-26-238492-1	vendor advisory
http://www.ubuntu.com/usn/usn-592-1	vendor advisory
http://secunia.com/advisories/29616	third party advisory
http://secunia.com/advisories/29550	third party advisory
http://secunia.com/advisories/29645	third party advisory
http://secunia.com/advisories/29607	third party advisory
http://www.vupen.com/english/advisories/2008/1793/references	vdb entry
http://secunia.com/advisories/29558	third party advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9889	signature vdb entry
http://rhn.redhat.com/errata/RHSA-2008-0208.html	vendor advisory
http://secunia.com/advisories/29526	third party advisory
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00002.html	vendor advisory
http://www.us-cert.gov/cas/techalerts/TA08-087A.html	third party advisory us government resource
http://secunia.com/advisories/29391	third party advisory
http://www.redhat.com/support/errata/RHSA-2008-0209.html	vendor advisory
http://www.securityfocus.com/bid/28448	vdb entry
http://www.redhat.com/support/errata/RHSA-2008-0207.html	vendor advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/41449	vdb entry
http://www.debian.org/security/2008/dsa-1534	vendor advisory
http://secunia.com/advisories/29547	third party advisory
http://sla.ckers.org/forum/read.php?10%2C20033
http://www.gentoo.org/security/en/glsa/glsa-200805-18.xml	vendor advisory
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0128
http://www.vupen.com/english/advisories/2008/0998/references	vdb entry
http://www.debian.org/security/2008/dsa-1535	vendor advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2008:080	vendor advisory
http://www.mozilla.org/security/announce/2008/mfsa2008-16.html	exploit

Frequently Asked Questions

What is the severity of CVE-2008-1238?: CVE-2008-1238 has been scored as a medium severity vulnerability.
How to fix CVE-2008-1238?: To fix CVE-2008-1238, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2008-1238 being actively exploited in the wild?: It is possible that CVE-2008-1238 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~6% probability that this vulnerability will be exploited by malicious actors in the next 30 days.

Description

Category

CWE-287 – Improper Authentication

References

Frequently Asked Questions