Lucene search
SecurityvulnsSECURITYVULNS:DOC:15432HistoryDec 20, 2006 - 12:00 a.m.
Mozilla Foundation Security Advisory 2006-75
2006-12-2000:00:00
vulners.com
15
Mozilla Foundation Security Advisory 2006-75
Title: RSS Feed-preview referrer leak
Impact: Low
Announced: December 19, 2006
Reporter: Jared Breland
Products: Firefox 2.0
Fixed in: Firefox 2.0.0.1
Description
Jared Breland reported on LEGROOM.net that when the new "Feed Preview" feature in Firefox 2.0 retrieves the icons of the installed web-based feed viewers it is potentially informing those services of your feed-browsing habits by sending the URL of the feed in a referrer header with each icon request.
This was an oversight and has been fixed in Firefox 2.0.0.1
Workaround
Upgrade to Firefox 2.0.0.1
References
LEGROOM.net blog
https://bugzilla.mozilla.org/show_bug.cgi?id=358878
CVE-2006-6506
Related
mozilla
mozilla
RSS Feed-preview referrer leak — Mozilla
2006-12-19 00:00:00
ubuntucve
ubuntucve
CVE-2006-6506
2006-12-20 00:00:00
cve
cve
CVE-2006-6506
2006-12-20 01:28:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2007-01-05 00:00:00
Firefox vulnerabilities
2007-01-03 00:00:00
openvas
openvas
Ubuntu Update for mozilla-thunderbird vulnerabilities USN-400-1
2009-03-23 00:00:00
Ubuntu Update for firefox vulnerabilities USN-398-1
2009-03-23 00:00:00
Gentoo Security Advisory GLSA 200701-02 (mozilla-firefox)
2008-09-24 00:00:00
gentoo
gentoo
Mozilla Firefox: Multiple vulnerabilities
2007-01-04 00:00:00
nessus
nessus
Ubuntu 6.10 : firefox vulnerabilities (USN-398-1)
2007-11-10 00:00:00
Firefox < 1.5.0.9 / 2.0.0.1 Multiple Vulnerabilities
2006-12-20 00:00:00
GLSA-200701-02 : Mozilla Firefox: Multiple vulnerabilities
2007-01-08 00:00:00
suse
suse
remote code execution in MozillaFirefox,MozillaThunderbird
2006-12-29 15:41:46
remote denial of service in mozilla
2007-01-12 14:08:00
Related for SECURITYVULNS:DOC:15432