CVE-2005-4874
The vulnerability CVE-2005-4874 affects the XMLHttpRequest object in Mozilla 1.7.8, where the HTTP TRACE method can be abused to disclose credentials. Specifically, an attacker can obtain (1) proxy authentication passwords via a request with Max-Forwards: 0 and (2) arbitrary local passwords on th...