CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:N/I:N/A:P
EPSS
Percentile
54.9%
Mozilla Firefox 1.5.0.4 and earlier allows remote user-assisted attackers
to cause a denial of service (crash) via a form with a multipart/form-data
encoding and a user-uploaded file. NOTE: a third party has claimed that
this issue might be related to the LiveHTTPHeaders extension.