2 matches found
CVE-2002-0354
The CVE-2002-0354 issue concerns the XMLHttpRequest (XMLHTTP) object in Netscape 6.1 and Mozilla 0.9.7. It permits remote attackers to read arbitrary files and list directories on a client by directing the browser to a file via a URL redirect and then reading the result through responseText. This...
CVE-2002-0354
The XMLHttpRequest object XMLHTTP in Netscape 6.1 and Mozilla 0.9.7 allows remote attackers to read arbitrary files and list directories on a client system by opening a URL that redirects the browser to the file on the client, then reading the result using the responseText property...