Vulnerabilities > CVE-2005-1575 - Remote Security vulnerability in Mozilla Firefox 0.10.1/1.0

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

mozilla

NVD

Published: 2005-05-14

Updated: 2008-09-05

Summary

The file download dialog in Mozilla Firefox 0.10.1 and 1.0 for Windows allows remote attackers to hide the real file types of downloaded files via the Content-Type HTTP header and a filename containing whitespace, dots, or ASCII byte 160.

Vulnerable Configurations

Part	Description	Count
Application	Mozilla Mozilla Firefox 0.10.1 Mozilla Firefox 1.0	2

References

http://secunia.com/advisories/12979
http://secunia.com/secunia_research/2004-11/advisory/
http://www.osvdb.org/16431