exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

Mozilla Firefox HSTS Enty Limit

Mozilla Firefox HSTS Enty Limit
Posted Aug 29, 2023
Authored by Konstantin

Mozilla Firefox only stores up to 1024 HSTS entries. When the limit is reached, Firefox discards entries based on their age and recent visits to the domain in question.

tags | advisory
SHA-256 | 28c30f393cb48239ab9dc658c1aff56b2651862c151910748a85b5596fc5ba67

Mozilla Firefox HSTS Enty Limit

Change Mirror Download
# VULNERABILITY
Mozilla Firefox only stores up to 1024 HSTS entries.
When the limit is reached, Firefox discards entries based on their age
and recent visits to the domain in question.

# IMPACT
The HSTS header ensures that once a page has been visited, the browser
will attempt to connect to it using HTTPS.
The limit means that Firefox effectively does not store any further HSTS
headers, as new ones permanently override each other.
Sites without HSTS protection are vulnerable to machine-in-the-middle
attacks, especially downgrade attacks such as SSL Stripping.

# MORE
To find out if you are affected, check the number of HSTS entries:
* Linux: `wc -l ~/.mozilla/firefox/{profile}/SiteSecurityServiceState.txt`
* Windows: `find /c /v " "
".\AppData\Roaming\Mozilla\Firefox\Profiles\{profile}\SiteSecurityServiceState.txt"`

This behavior was first reported by Sheila Ayelen Berta and Sergio De
Los Santos at Black Hat Europe 2017.
I filed a bug report in February 2023 that is currently being worked on.

# REFERENCES
* Bug report: https://bugzilla.mozilla.org/show_bug.cgi?id=1818984
* Mastodon thread: https://infosec.exchange/@kpwn/110010433703922665
* Blog post:
https://kpwn.de/2023/03/http-strict-transport-security/#1-the-limited-number-of-hsts-entries
* Black Hat Europe 2017: Breaking Out HSTS (and HPKP) On Firefox,
IE/Edge and (Possibly) Chrome
* Slides:
https://www.blackhat.com/docs/eu-17/materials/eu-17-Berta-Breaking-Out-HSTS-And-HPKP-On-Firefox-IE-Edge-And-Possibly-Chrome.pdf
* Talk: https://www.youtube.com/watch?v=dPnU9_pXJ5k

Login or Register to add favorites

File Archive:

September 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    261 Files
  • 2
    Sep 2nd
    17 Files
  • 3
    Sep 3rd
    38 Files
  • 4
    Sep 4th
    52 Files
  • 5
    Sep 5th
    23 Files
  • 6
    Sep 6th
    27 Files
  • 7
    Sep 7th
    0 Files
  • 8
    Sep 8th
    1 Files
  • 9
    Sep 9th
    16 Files
  • 10
    Sep 10th
    38 Files
  • 11
    Sep 11th
    21 Files
  • 12
    Sep 12th
    40 Files
  • 13
    Sep 13th
    18 Files
  • 14
    Sep 14th
    0 Files
  • 15
    Sep 15th
    0 Files
  • 16
    Sep 16th
    21 Files
  • 17
    Sep 17th
    51 Files
  • 18
    Sep 18th
    0 Files
  • 19
    Sep 19th
    0 Files
  • 20
    Sep 20th
    0 Files
  • 21
    Sep 21st
    0 Files
  • 22
    Sep 22nd
    0 Files
  • 23
    Sep 23rd
    0 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close