CVE-2006-2782 — Vulnetix

Try Vulnetix Request Demo

CVE-2006-2782 PUBLISHED CVSS 4.300000190734863 MEDIUM

Firefox 1.5.0.2 does not fix all test cases associated with CVE-2006-1729, which allows remote attackers to read arbitrary files by inserting the target filename into a text box, then turning that box into a file upload control.

EPSS 1.43% · 80.6th percentile

Risk Scores

CVSS v2.0

4.300000190734863

EPSS Score

1.43%

80.6th percentile

Affected Products

Vendor	Product	Versions
mozilla	firefox	0
mozilla	seamonkey	0
n/a	n/a	n/a

Timeline

Jun 2, 2006 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
Apr 6, 2023 EPSS Score
May 19, 2023 EPSS Score
Jun 21, 2023 EPSS Score

References

21176 third-party-advisory
MDKSA-2006:145 vendor-advisory
ADV-2006-3748 vdb
USN-296-1 vendor-advisory
http://www.mozilla.org/security/announce/2006/mfsa2006-41.html url
USN-323-1 vendor-advisory
20561 third-party-advisory
RHSA-2006:0594 vendor-advisory
21336 third-party-advisory
20060602 rPSA-2006-0091-1 firefox thunderbird mailing-list
RHSA-2006:0610 vendor-advisory
20376 third-party-advisory
RHSA-2006:0609 vendor-advisory
21178 third-party-advisory
1016202 vdb
18228 vdb
21532 third-party-advisory
21270 third-party-advisory
ADV-2008-0083 vdb
21188 third-party-advisory

…and 23 more

Open in Interactive Console →