Paul Nel

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions 3.x before 3.0.6 **Description** The issue allows local users to obtain sensitive information by using the back button or history list of the victim's browser. This can be demonstrated by reading the response page of an https POST request, indicating a problem with how Cache-Control directives are implemented. **Recommendations** For Mozilla Firefox versions 3.x before 3.0.6, update to version 3.0.6 or later to resolve the issue.