PT-2007-4366 · Mozilla · Firefox

Published

2007-06-06

·

Updated

2018-10-16

·

CVE-2007-3074

CVSS v2.0

4.3

Medium

VectorAV:N/AC:M/Au:N/C:P/I:N/A:N
Name of the Vulnerable Software and Affected Versions: Mozilla Firefox versions 2.0.0.4 and earlier
Description: The issue allows remote attackers to read files in the local Firefox installation directory via a resource:// URI.
Recommendations: For Mozilla Firefox versions 2.0.0.4 and earlier, update to a version later than 2.0.0.4 to resolve the issue.

Exploit

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2007-3074
DSA-1697-1
DSA-1704-1
DSA-1707-1

Affected Products

Firefox