Firefox 1.0.6 and Mozilla 1.7.10 allows attackers to execute arbitrary commands via shell metacharacters in a URL that is provided to the browser on the command line, which is sent unfiltered to bash.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Mozilla | Mozilla | 1.7.10 | 1.7.10 |
Firefox | Mozilla | 1.0.6 | 1.0.6 |