CVE-2006-2782

Impact:
Moderate
Public Date:
2006-06-01

The MITRE CVE dictionary describes this issue as:

Firefox 1.5.0.2 does not fix all test cases associated with CVE-2006-1729, which allows remote attackers to read arbitrary files by inserting the target filename into a text box, then turning that box into a file upload control.

Find out more about CVE-2006-2782 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux version 2.1 (seamonkey) RHSA-2006:0594 2006-08-28
Red Hat Enterprise Linux version 3 (seamonkey) RHSA-2006:0578 2006-07-20
Red Hat Enterprise Linux version 4 RHSA-2006:0609 2006-08-02
Red Hat Enterprise Linux version 4 (thunderbird) RHSA-2006:0611 2006-07-29
Red Hat Enterprise Linux version 4 (firefox) RHSA-2006:0610 2006-07-28

Affected Packages State

Platform Package State
Red Hat Enterprise Linux version 4 seamonkey 1.0.3-0.el4.1 Fixed
Red Hat Enterprise Linux version 4 devhelp 0.10-0.2.el4 Fixed