CVE-2006-2894

Exploit

EPSS 6.91%
Published 07.06.2006 10:02:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Mozilla Firefox 1.5.0.4, 2.0.x before 2.0.0.8, Mozilla Suite 1.7.13, Mozilla SeaMonkey 1.0.2 and other versions before 1.1.5, and Netscape 8.1 and earlier allow user-assisted remote attackers to read arbitrary files by tricking a user into typing the characters of the target filename in a text box and using the OnKeyDown, OnKeyPress, and OnKeyUp Javascript keystroke events to change the focus and cause those characters to be inserted into a file upload input control, which can then upload the file when the user submits the form.

Affected products Warnungen 0 Metrics 2 CWE 1 References 48

Data is provided by the National Vulnerability Database (NVD)

Mozilla ≫ Firefox Version <= 2.0.0.8

Mozilla ≫ Firefox Version1.5.0.4

Mozilla ≫ Mozilla Suite Version1.7.13

Mozilla ≫ Seamonkey Version <= 1.1.4

Mozilla ≫ Seamonkey Version1.0.2

Netscape ≫ Navigator Version <= 8.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	6.91%	0.91

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4	4.9	4.9	AV:N/AC:H/Au:N/C:P/I:P/A:N

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://www.vupen.com/english/advisories/2008/0083

Vendor Advisory

http://secunia.com/advisories/21532

Vendor Advisory

http://www.mandriva.com/security/advisories?name=MDKSA-2006:143

http://www.mandriva.com/security/advisories?name=MDKSA-2006:145

http://archives.neohapsis.com/archives/bugtraq/2007-02/0166.html

http://archives.neohapsis.com/archives/bugtraq/2007-02/0187.html

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742

http://lcamtuf.coredump.cx/focusbug/

http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046610.html

Exploit