Mozilla Firefox before 0.10.1 allows remote attackers to delete arbitrary files in the download directory via a crafted data: URI that is not properly handled when the user clicks the Save button.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | 0.8 (including) | 0.8 (including) |
Firefox | Mozilla | 0.9 (including) | 0.9 (including) |
Firefox | Mozilla | 0.9-rc (including) | 0.9-rc (including) |
Firefox | Mozilla | 0.9.1 (including) | 0.9.1 (including) |
Firefox | Mozilla | 0.9.2 (including) | 0.9.2 (including) |
Firefox | Mozilla | 0.9.3 (including) | 0.9.3 (including) |
Firefox | Mozilla | 0.10 (including) | 0.10 (including) |
Firefox | Mozilla | preview_release (including) | preview_release (including) |