2023-04-24 12:24:31 +02:00
{
"id" : "CVE-2004-1449" ,
"sourceIdentifier" : "cve@mitre.org" ,
"published" : "2004-12-31T05:00:00.000" ,
2024-12-08 03:06:42 +00:00
"lastModified" : "2024-11-20T23:50:54.553" ,
"vulnStatus" : "Modified" ,
2024-07-14 02:06:08 +00:00
"cveTags" : [ ] ,
2023-04-24 12:24:31 +02:00
"descriptions" : [
{
"lang" : "en" ,
"value" : "Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7 allows remote attackers to determine the location of files on a user's hard drive by obscuring a file upload control and tricking the user into dragging text into that control."
}
] ,
"metrics" : {
"cvssMetricV2" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "2.0" ,
"vectorString" : "AV:N/AC:H/Au:N/C:P/I:N/A:N" ,
2024-12-08 03:06:42 +00:00
"baseScore" : 2.6 ,
2023-04-24 12:24:31 +02:00
"accessVector" : "NETWORK" ,
"accessComplexity" : "HIGH" ,
"authentication" : "NONE" ,
"confidentialityImpact" : "PARTIAL" ,
"integrityImpact" : "NONE" ,
2024-12-08 03:06:42 +00:00
"availabilityImpact" : "NONE"
2023-04-24 12:24:31 +02:00
} ,
"baseSeverity" : "LOW" ,
"exploitabilityScore" : 4.9 ,
"impactScore" : 2.9 ,
"acInsufInfo" : false ,
"obtainAllPrivilege" : false ,
"obtainUserPrivilege" : false ,
"obtainOtherPrivilege" : false ,
"userInteractionRequired" : true
}
]
} ,
"weaknesses" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"description" : [
{
"lang" : "en" ,
"value" : "NVD-CWE-Other"
}
]
}
] ,
"configurations" : [
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:firebirdsql:firebird:0.7:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F374AF9E-BBBC-4C0E-B00C-5DB7FC83B445"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:0.8:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "BA58BA23-4CFE-40F8-A2F4-104007E12E05"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:0.9.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "22F00276-9071-4B96-B49C-2E0898476874"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:0.9.2.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "EB84CC9B-346B-4AF4-929E-D56D85960103"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:0.9.3:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "9420CD82-0E5F-4486-9AF8-9DCD6ED7E037"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:0.9.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "0A9C79AB-4ABE-49E6-BAB2-94610AE0316F"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:0.9.4.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "04DE7CCB-79B8-4F9B-AC14-E4A100F9E473"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:0.9.5:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "1444C77E-FF98-40E5-9CA9-B4C71B3C9304"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:0.9.6:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "3B40771F-30CB-45D0-9EDE-1F13852085B1"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:0.9.7:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "1E4F64F8-CCC2-47FF-9B9D-41B3BCDD513C"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:0.9.8:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "47315EC4-1EED-4070-A087-8E37C8FE6703"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:0.9.9:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "9F1EB38F-CEB2-40BC-AA5D-CC539F597137"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:0.9.35:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "EE6B0681-B96F-405C-8042-1BF2DDB41648"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:0.9.48:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "5436BBD2-E3FF-4558-B8F5-FFF5CA9FC045"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "CCDAEAE6-BA9F-4D40-B264-4A72930239E1"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.0:rc1:*:*:*:*:*:*" ,
"matchCriteriaId" : "C9296197-0EE0-4CC0-A11F-E44E3443E990"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.0:rc2:*:*:*:*:*:*" ,
"matchCriteriaId" : "A76ACC55-754D-4501-8312-5A4E10D053B8"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.0.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "A8987151-0901-4547-B750-5DC470BB9CF7"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.0.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "53E60BCC-6D1C-489E-9F3B-9BE42B46704F"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "66A87ED8-9E1F-4C2C-B806-A41765081C9C"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.1:alpha:*:*:*:*:*:*" ,
"matchCriteriaId" : "C795D86F-9B08-41FE-B82B-5BBB3DE6357D"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.1:beta:*:*:*:*:*:*" ,
"matchCriteriaId" : "2637D552-4A3D-4867-B52A-ACCED8681AF4"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "7CC237C8-CFE0-4128-B549-93CD16894E71"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.2:alpha:*:*:*:*:*:*" ,
"matchCriteriaId" : "6B8EA79A-8426-44CF-AF13-58F7EF8B6D88"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.2:beta:*:*:*:*:*:*" ,
"matchCriteriaId" : "367A5D46-0FF3-4140-9478-251363822E9C"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.2.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "CAA58EE9-05C7-4395-A8A4-5F54BE4C5DAD"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.3:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "C656A621-BE62-4BB8-9B25-A3916E60FA12"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.3.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F8DE4889-424F-4A44-8C14-9F18821CE961"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "4D3F91A1-7DD9-4146-8BA4-BE594C66DD30"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.4:alpha:*:*:*:*:*:*" ,
"matchCriteriaId" : "82A6419D-0E94-4D80-8B07-E5AB4DBA2F28"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.4:beta:*:*:*:*:*:*" ,
"matchCriteriaId" : "1003D688-3EEA-45F9-BB2C-5BAB395D7678"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.4.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "ED69BEB9-8D83-415B-826D-9D17FB67976B"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.4.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "9AE678D7-812D-4C55-91B0-F3AC6BE0CD58"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.4.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "098458D4-635B-4A4D-9472-39370094E1ED"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.5:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "BCDB64E5-AE26-43DF-8A66-654D5D22A635"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.5.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "ED9D75F1-8333-43DE-A08B-142E4C5899D4"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:mozilla:1.6:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "6BF63077-4E98-497D-8CE6-B84B022DB21D"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:thunderbird:0.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "0618BD26-0EF5-4774-9131-B5ABD4CD302A"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:thunderbird:0.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "0D604DAE-DF63-413C-9F49-FFC8E84699F8"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:thunderbird:0.3:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "11DE6185-09F4-48E3-9742-F9D8030B5774"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:thunderbird:0.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B2E70864-E077-4CD6-A0E8-BC2C4C298A6A"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:thunderbird:0.5:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "61E565E5-286D-4A68-B085-5659DFE59A9C"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:thunderbird:0.6:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "8E2A68B4-9101-4AC5-9E82-EEB5A5405541"
}
]
}
]
}
] ,
"references" : [
{
"url" : "http://bugzilla.mozilla.org/show_bug.cgi?id=206859#c0" ,
"source" : "cve@mitre.org"
2024-04-04 08:46:00 +00:00
} ,
{
"url" : "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:082" ,
"source" : "cve@mitre.org"
2024-12-08 03:06:42 +00:00
} ,
{
"url" : "http://bugzilla.mozilla.org/show_bug.cgi?id=206859#c0" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
} ,
{
"url" : "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:082" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
2023-04-24 12:24:31 +02:00
}
]
}
