DescriptionMozilla Firefox before 188.8.131.52 and SeaMonkey before 1.1.5, when running on Linux systems with gnome-vfs support, might allow remote attackers to read arbitrary files on SSH/sftp servers that accept key authentication by creating a web page on the target server, in which the web page contains URIs with (1) smb: or (2) sftp: schemes that access other files from the server.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
SUSE Security Advisories:
- SUSE-SA:2007:057, published Thu, 25 Oct 2007 18:00:00 +0000
SUSE Timeline for this CVECVE page created: Tue Jul 9 16:15:36 2013
CVE page last modified: Fri Oct 7 12:45:38 2022