Firefox 1.5.0.2 does not fix all test cases associated with CVE-2006-1729, which allows remote malicious users to read arbitrary files by inserting the target filename into a text box, then turning that box into a file upload control.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox |
||
mozilla seamonkey |