Lucene search

[email protected]CVE-2004-0759

HistoryAug 18, 2004 - 4:00 a.m.

CVE-2004-0759

2004-08-1804:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

mozilla

cve-2004-0759

file input

security vulnerability

nvd

6.4 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.006 Low

EPSS

Percentile

78.6%

JSON

Mozilla before 1.7 allows remote web servers to read arbitrary files via Javascript that sets the value of an <input type=“file”> tag.

CPENameOperatorVersion
mozilla:mozillamozillaeq*

CPE	Name	Operator	Version
mozilla:mozilla	mozilla	eq	*

References

ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt

bugzilla.mozilla.org/show_bug.cgi?id=241924

marc.info/?l=bugtraq&m=109900315219363&w=2

www.mozilla.org/projects/security/known-vulnerabilities.html#mozilla1.7

www.novell.com/linux/security/advisories/2004_36_mozilla.html

www.redhat.com/support/errata/RHSA-2004-421.html

www.securityfocus.com/bid/15495

exchange.xforce.ibmcloud.com/vulnerabilities/16870

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11153

6.4 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.006 Low

EPSS

Percentile

78.6%

JSON

Related for CVE-2004-0759

freebsd1 openvas6 nessus4 redhat1 suse7 slackware1