Vulnerability
Mozilla
Affected
Mozilla prior to 0.9.2
Description
'QuantumG' found following.
208.191.35.126 - - [27/Jun/2001:21:07:21 -0400] "GET /~qg/billy.html HTTP/1.1" 200 333
"mailbox:///home/dustin/.mozilla/dustin/uo1voac3.slt/Mail/Mail/mail.ink-1.org/Inbox?number=29822904"
"Mozilla/5.0 (X11; U; Linux 2.2.16-22 i686; en-US; rv:0.9.1) Gecko/20010608"
So, we can see password entry here.
Solution
This bug is known and fixed.
http://bugzilla.mozilla.org/show_bug.cgi?id=83038
This is fixed for mozilla 0.9.2. People using Mozilla < 1.0
should probably be aware that there are bugs remaining, and some
of those bugs may affect the security of the application.
Credits
-- UnKnown --
|