The MITRE CVE dictionary describes this issue as:
Firefox 220.127.116.11 does not fix all test cases associated with CVE-2006-1729, which allows remote attackers to read arbitrary files by inserting the target filename into a text box, then turning that box into a file upload control.
Red Hat security errata
|Red Hat Enterprise Linux version 2.1 (seamonkey)||RHSA-2006:0594||August 28, 2006|
|Red Hat Enterprise Linux version 3 (seamonkey)||RHSA-2006:0578||July 20, 2006|
|Red Hat Enterprise Linux version 4||RHSA-2006:0609||August 02, 2006|
|Red Hat Enterprise Linux version 4 (firefox)||RHSA-2006:0610||July 28, 2006|
|Red Hat Enterprise Linux version 4 (thunderbird)||RHSA-2006:0611||July 29, 2006|
This page is generated automatically and has not been checked for errors or omissions.
For clarification or corrections please contact the Red Hat Security Response Team.