CVE-2005-1576 - The file download dialog in Mozilla Firefox 0.10.1 and 1.0 for Windows uses the Content-Type HTTP he

CVE-2005-1576

Summary

The file download dialog in Mozilla Firefox 0.10.1 and 1.0 for Windows uses the Content-Type HTTP header to determine the file type, but saves the original file extension when "Save to Disk" is selected, which allows remote attackers to hide the real file types of downloaded files.

References

http://secunia.com/advisories/12979
http://secunia.com/secunia_research/2004-11/advisory/
http://www.osvdb.org/16432

Vulnerable Configurations

cpe:2.3:a:mozilla:firefox:0.10.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:0.10.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:1.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:1.0:*:*:*:*:*:*:*

CVSS

Base:	2.6 (as of 05-09-2008 - 20:49)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	HIGH	NONE

Impact

Confidentiality	Integrity	Availability
NONE	PARTIAL	NONE

cvss-vector via4

AV:N/AC:H/Au:N/C:N/I:P/A:N

refmap via4

misc	http://secunia.com/secunia_research/2004-11/advisory/
osvdb	16432
secunia	12979

Last major update

05-09-2008 - 20:49

Published

12-05-2005 - 04:00

Last modified

05-09-2008 - 20:49