CVE Vulnerabilities

CVE-2004-1449

Published: Dec 31, 2004 | Modified: Sep 05, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.6 LOW
AV:N/AC:H/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7 allows remote attackers to determine the location of files on a users hard drive by obscuring a file upload control and tricking the user into dragging text into that control.

Affected Software

Name Vendor Start Version End Version
Firebird Firebirdsql 0.7 (including) 0.7 (including)
Mozilla Mozilla 0.8 (including) 0.8 (including)
Mozilla Mozilla 0.9.2 (including) 0.9.2 (including)
Mozilla Mozilla 0.9.2.1 (including) 0.9.2.1 (including)
Mozilla Mozilla 0.9.3 (including) 0.9.3 (including)
Mozilla Mozilla 0.9.4 (including) 0.9.4 (including)
Mozilla Mozilla 0.9.4.1 (including) 0.9.4.1 (including)
Mozilla Mozilla 0.9.5 (including) 0.9.5 (including)
Mozilla Mozilla 0.9.6 (including) 0.9.6 (including)
Mozilla Mozilla 0.9.7 (including) 0.9.7 (including)
Mozilla Mozilla 0.9.8 (including) 0.9.8 (including)
Mozilla Mozilla 0.9.9 (including) 0.9.9 (including)
Mozilla Mozilla 0.9.35 (including) 0.9.35 (including)
Mozilla Mozilla 0.9.48 (including) 0.9.48 (including)
Mozilla Mozilla 1.0 (including) 1.0 (including)
Mozilla Mozilla 1.0-rc1 (including) 1.0-rc1 (including)
Mozilla Mozilla 1.0-rc2 (including) 1.0-rc2 (including)
Mozilla Mozilla 1.0.1 (including) 1.0.1 (including)
Mozilla Mozilla 1.0.2 (including) 1.0.2 (including)
Mozilla Mozilla 1.1 (including) 1.1 (including)
Mozilla Mozilla 1.1-alpha (including) 1.1-alpha (including)
Mozilla Mozilla 1.1-beta (including) 1.1-beta (including)
Mozilla Mozilla 1.2 (including) 1.2 (including)
Mozilla Mozilla 1.2-alpha (including) 1.2-alpha (including)
Mozilla Mozilla 1.2-beta (including) 1.2-beta (including)
Mozilla Mozilla 1.2.1 (including) 1.2.1 (including)
Mozilla Mozilla 1.3 (including) 1.3 (including)
Mozilla Mozilla 1.3.1 (including) 1.3.1 (including)
Mozilla Mozilla 1.4 (including) 1.4 (including)
Mozilla Mozilla 1.4-alpha (including) 1.4-alpha (including)
Mozilla Mozilla 1.4-beta (including) 1.4-beta (including)
Mozilla Mozilla 1.4.1 (including) 1.4.1 (including)
Mozilla Mozilla 1.4.2 (including) 1.4.2 (including)
Mozilla Mozilla 1.4.4 (including) 1.4.4 (including)
Mozilla Mozilla 1.5 (including) 1.5 (including)
Mozilla Mozilla 1.5.1 (including) 1.5.1 (including)
Mozilla Mozilla 1.6 (including) 1.6 (including)
Thunderbird Mozilla 0.1 (including) 0.1 (including)
Thunderbird Mozilla 0.2 (including) 0.2 (including)
Thunderbird Mozilla 0.3 (including) 0.3 (including)
Thunderbird Mozilla 0.4 (including) 0.4 (including)
Thunderbird Mozilla 0.5 (including) 0.5 (including)
Thunderbird Mozilla 0.6 (including) 0.6 (including)

References