Lucene search

K
cve[email protected]CVE-2007-0801
HistoryFeb 07, 2007 - 11:28 a.m.

CVE-2007-0801

2007-02-0711:28:00
web.nvd.nist.gov
40
cve-2007-0801
nvd
mozilla firefox
remote code execution
security vulnerability

6.6 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.012 Low

EPSS

Percentile

85.3%

The nsExternalAppHandler::SetUpTempFile function in Mozilla Firefox 1.5.0.9 creates temporary files with predictable filenames based on creation time, which allows remote attackers to execute arbitrary web script or HTML via a crafted XMLHttpRequest.

Affected configurations

NVD
Node
mozillafirefoxMatch1.5.0.9

6.6 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.012 Low

EPSS

Percentile

85.3%