The FTP protocol implementation in Mozilla Firefox before 1.5.0.11 and 2.x before 2.0.0.3 allows remote attackers to force the client to connect to other servers, perform a proxied port scan, or obtain sensitive information by specifying an alternate server address in an FTP PASV response.
References
Configurations
History
No history.
Information
Published : 2007-03-21 19:19
Updated : 2024-02-04 17:13
NVD link : CVE-2007-1562
Mitre link : CVE-2007-1562
CVE.ORG link : CVE-2007-1562
JSON object : View
Products Affected
mozilla
- firefox
canonical
- ubuntu_linux
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor