LinuxSecurity.com: Mozilla security researcher moz_bug_r_a4 reported vulnerabilities in the session-restore feature by which content could be injected into an incorrect document storage location, including storage locations for other domains. An attacker could utilize these issues to violate the browser's same-origin policy and perform an XSS attack while SessionStore data is being restored. moz_bug_r_a4 also reported that one variant could be used by an attacker to run arbitrary JavaScript with chrome privileges.
FIREFOX(1) Linux User's Manual FIREFOX(1)NAME
firefox - a Web browser for X11 derived from the Mozilla browser
SYNOPSIS
firefox [OPTIONS] [URL]
firefox-bin [OPTIONS] [URL]
DESCRIPTION
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability.
USAGE
firefox is a simple shell script that will set up the environment for the actual executable, firefox-bin.
OPTIONS
A summary of the options supported by firefox is included below.
GTK options
--gdk-debug=FLAGS Gdk debugging flags to set
--gdk-no-debug=FLAGS
Gdk debugging flags to unset
--gtk-debug=FLAGS
Gtk+ debugging flags to set
--gtk-no-debug=FLAGS
Gtk+ debugging flags to unset
--gtk-module=MODULE
Load an additional Gtk module
X11 options
--display=DISPLAY
X display to use
--sync Make X calls synchronous
--no-xshm
Don't use X shared memory extension
--xim-preedit=STYLE
--xim-status=STYLE
--g-fatal-warnings
Make all warnings fatal
Firefox options
-h, -help
Show summary of options.
-v, -version
Print /usr/bin/firefox-bin version.
-CreateProfile profile
Create profile.
-P profile
Start with profile.
-ProfileManager
Start with profile manager.
-remote command
Execute command in an already running Firefox process. For more info, see: http://www.mozilla.org/unix/remote.html
-jsconsole
Start with Javascript Console
-chrome url
Load the specified chrome.
-no-remote
Don't connect to any other running instances of firefox. Use this if you want to run firefox in an entirely new process. By default,
firefox will delegate a command to an already running instance.
-safe-mode
Start firefox in safe-mode. This disables all third-party extensions, and may be necessary if you are having problems with an exten-
sion you installed.
-new-tab url
Open url in a new tab.
-new-window url
Open url in a new window.
-preferences
Open the preferences dialog.
-private
Start firefox in private browsing mode.
-private-toggle
Toggle private browsing mode.
-setDefaultBrowser
Set firefox as the default web browser.
-search term
Search for term with your default search engine.
-migration
Start with migration wizard.
-new-instance
Open new instance, not a new window in running instance.
FILES
/usr/bin/firefox - shell script wrapping firefox
/usr/lib/mozilla/firefox-bin - firefox executable
VERSION
1.0
BUGS
To report a bug, please visit http://bugzilla.mozilla.org/
SEE ALSO mozilla(1)AUTHORS
The Mozilla Organization
http://www.mozilla.org/about.html
firefox August 07, 2001 FIREFOX(1)