CVE-2013-1671
Published: 14 May 2013
Mozilla Firefox before 21.0 does not properly implement the INPUT element, which allows remote attackers to obtain the full pathname via a crafted web site.
Priority
Status
Package | Release | Status |
---|---|---|
firefox Launchpad, Ubuntu, Debian |
lucid |
Ignored
(reached end-of-life)
|
precise |
Released
(21.0+build1-0ubuntu0.12.04.3)
|
|
quantal |
Released
(21.0+build1-0ubuntu0.12.10.2)
|
|
raring |
Released
(21.0+build1-0ubuntu0.12.04.2)
|
|
upstream |
Released
(21.0)
|
|
seamonkey Launchpad, Ubuntu, Debian |
lucid |
Ignored
(reached end-of-life)
|
precise |
Does not exist
|
|
quantal |
Does not exist
|
|
raring |
Does not exist
|
|
upstream |
Needs triage
|