Netscape embedded JavaScript in GIF file comments can be used to access remote data (NetscapeJavascriptAccessData)

Vuln ID: 6344
Risk Level: Medium risk vulnerability  Medium NetscapeJavascriptAccessData
Platforms: RedHat Linux: 6.2, Debian Debian Linux: 2.2, FreeBSD FreeBSD Ports Collection, Connectiva Linux, RedHat Linux: 7, Immunix Immunix OS: 6.2, Immunix Immunix OS: 7.0-beta, Immunix Immunix OS: 7.0, Netscape Communicator: 4.76, RedHat Linux: 7.1, RedHat Linux: 7.2, RedHat Linux: 7.3
Description:

Netscape Communicator could allow a malicious Web site operator to access data on a visiting userís computer. The Netscape Navigator fails to properly escape Graphic Interchange Format (GIF) file comments in the image information page. A malicious Web site operator could exploit this vulnerability by inserting JavaScript in the GIF file comments to upload information from a visiting userís computer to the Web server. An attacker can use this vulnerability to gain access to sensitive information, including the browser history.

Remedy:

Upgrade to the latest version of Netscape Communicator (4.77 or later), available from the Netscape Web site. See References.

For Red Hat Linux 6.2:
Upgrade to the latest version of Netscape (4.77-0.6.2 or later), as listed in RHSA-2001:046-05. See References.

For Red Hat Linux 7.0 and 7.1:
Upgrade to the latest version of Netscape (4.77-1 or later), as listed in RHSA-2001:046-05. See References.

For Immunix OS 6.2:

For Immunix OS 7.0-beta and 7.0:
Upgrade to the latest version of Netscape (4.77-1 or later), as listed in Immunix OS Security Advisory IMNX-2001-70-014-01. See References.

For Progeny Debian:
Upgrade to the latest version of Netscape (4.77-1progeny2 or later), as listed in Progeny Linux Systems -- Security Advisory PROGENY-SA-2001-07. See References.

For Conectiva Linux 4.0, 4.0es, 4.1, 4.2, 5.0, prg graficos, ecommerce, 5.1, 6.0:
Upgrade to the latest version of Netscape (4.77-1cl or later), as listed in Conectiva Linux Security Announcement CLA-2001:393. See References.

For Debian 2.2 potato:
Upgrade to the latest version of Netscape (4.77-1 or later), as listed in DSA 051-1. See References.

For FreeBSD Ports Collection (prior to 2001-04-07):
Upgrade to the latest Netscape port version (4.77 or later), as listed in FreeBSD Inc., Security Advisory FreeBSD-SA-02-16. See References.

For other distributions:
Contact your vendor for upgrade or patch information.

Additional Information: Service Release 3.09
References:

BugTraq Mailing List, Mon Apr 09 2001 - 06:48:26 CDT
Netscape 4.76 gif comment flaw
http://archives.neohapsis.com/archives/bugtraq/2001-04/0125.html

RHSA-2001:046-05
New netscape packages available
http://rhn.redhat.com/errata/RHSA-2001-046.html

Netscape Communications, Inc. Web site
Netscape Products
http://home.netscape.com/download/index.html?cp=djuc1

Immunix OS Security Advisory IMNX-2001-70-014-01
netscape
http://archives.neohapsis.com/archives/linux/immunix/2001-q2/0007.html

Progeny Linux Systems Security Advisory PROGENY-SA-2001-07
Netscape Navigator fails to protect privacy
http://lists.progeny.com/archive/progeny-security-announce/2001/msg00009.html

Conectiva Linux Announcement CLSA-2001:393
netscape
http://distro.conectiva.com/atualizacoes/?id=a&anuncio=000393

DSA-051-1
New Netscape packages available
http://www.debian.org/security/2001/dsa-051

FreeBSD Security Advisory FreeBSD-SA-02-16
GIF/JPEG comment vulnerability in Netscape
http://archives.neohapsis.com/archives/freebsd/2002-03/0147.html

ISS X-Force
Netscape embedded JavaScript in GIF file comments can be used to access remote data
http://www.iss.net/security_center/static/6344.php

CVE CVE-2001-0596
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0596


X-Force Logo
Know Your Risks
Mitre.org CVE Logo
Common Vulnerabilties & Exposures