2 matches found
CVE-2004-1449
CVE-2004-1449 affects Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7. The root cause is a user interaction trap where a malicious site obscures a file upload control and tricks the user into dragging text into it, enabling an attacker to determine the location of files on the ...
CVE-2004-1449
Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7 allows remote attackers to determine the location of files on a user's hard drive by obscuring a file upload control and tricking the user into dragging text into that control...