Vulnerabilities > CVE-2004-2657 - Unspecified vulnerability in Mozilla Firefox 1.5.0.1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Mozilla Firefox 1.5.0.1, and possibly other versions, preserves some records of user activity even after uninstalling, which allows local users who share a Windows profile to view the records after a new installation of Firefox, as reported for the list of Passwords Never Saved web sites. NOTE: The vendor has disputed this issue, stating that "The uninstaller is primarily there to uninstall the application. It is not there to uninstall user data. For the moment I will stick by my module-owner decision.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://www.securityfocus.com/archive/1/431021/100/0/threaded
- http://www.securityfocus.com/archive/1/431021/100/0/threaded
- http://www.securityfocus.com/archive/1/431063/100/0/threaded
- http://www.securityfocus.com/archive/1/431063/100/0/threaded
- https://bugzilla.mozilla.org/show_bug.cgi?id=234680
- https://bugzilla.mozilla.org/show_bug.cgi?id=234680
- https://bugzilla.mozilla.org/show_bug.cgi?id=330884
- https://bugzilla.mozilla.org/show_bug.cgi?id=330884