CVE-2004-2227

Sažetak

Mozilla Firefox before 1.0 truncates long filenames in the file download dialog box, which makes it easier for remote attackers to trick users into downloading files with dangerous extensions.

Reference

http://secunia.com/advisories/13144
http://secunia.com/advisories/13724
http://security.gentoo.org/glsa/glsa-200501-03.xml
http://www.osvdb.org/11591
https://bugzilla.mozilla.org/show_bug.cgi?id=234416
https://exchange.xforce.ibmcloud.com/vulnerabilities/18016

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

11-07-2017 - 01:31

Objavljeno

31-12-2004 - 05:00