Mozilla.Firefox.NsSessionStore.js.Arbitrary.File.Access
Description
This indicates an attack attempt to exploit an arbitrary file-accessing vulnerability in Mozilla FireFox.
The vulnerability is caused by an error when the vulnerable software handles an HTML file with a malicious "input" element. It allows a remote attacker to read arbitrary files from the vulnerable system via sending a crafted web page.
Affected Products
Firefox before 3.0.6
Impact
System Compromise: Remote attackers can read arbitrary files from vulnerable systems.
Recommended Actions
Upgrade to the latest version, available from the vendor's web site:
http://www.mozilla.com/en-US/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2021-01-11 | 16.995 |