CVE-2006-2894

Exploit

EPSS 6.91%
Veröffentlicht 07.06.2006 10:02:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Mozilla Firefox 1.5.0.4, 2.0.x before 2.0.0.8, Mozilla Suite 1.7.13, Mozilla SeaMonkey 1.0.2 and other versions before 1.1.5, and Netscape 8.1 and earlier allow user-assisted remote attackers to read arbitrary files by tricking a user into typing the characters of the target filename in a text box and using the OnKeyDown, OnKeyPress, and OnKeyUp Javascript keystroke events to change the focus and cause those characters to be inserted into a file upload input control, which can then upload the file when the user submits the form.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 48

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Mozilla ≫ Firefox Version <= 2.0.0.8

Mozilla ≫ Firefox Version1.5.0.4

Mozilla ≫ Mozilla Suite Version1.7.13

Mozilla ≫ Seamonkey Version <= 1.1.4

Mozilla ≫ Seamonkey Version1.0.2

Netscape ≫ Navigator Version <= 8.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	6.91%	0.91

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4	4.9	4.9	AV:N/AC:H/Au:N/C:P/I:P/A:N

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://www.vupen.com/english/advisories/2008/0083

Vendor Advisory

http://secunia.com/advisories/21532

Vendor Advisory

http://www.mandriva.com/security/advisories?name=MDKSA-2006:143

http://www.mandriva.com/security/advisories?name=MDKSA-2006:145

http://archives.neohapsis.com/archives/bugtraq/2007-02/0166.html

http://archives.neohapsis.com/archives/bugtraq/2007-02/0187.html

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742

http://lcamtuf.coredump.cx/focusbug/

http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046610.html

Exploit