Title: Mozilla vulnerabilities
Date: May 29 2002
Vulnerable systems: Conectiva Linux 6.0, 7.0, 8
Full advisory: http://www.net-security.org/advisory.php?id=730
Problem description: GreyMagic Security found a vulnerability in mozilla prior to version 1.0rc1 which allows a hostile site to read and list user files. The vulnerability was related to the XMLHTTP, a component that is primarily used for retrieving XML documents from a web server.
Reading our newsletter every Monday will keep you up-to-date with security news.
Receive a daily digest of the latest security news.