• info
• discussion
• exploit
• solution
• references

Mozilla Firefox/Thunderbird/SeaMonkey 'file://' URI Security Bypass Vulnerability

An attacker may exploit this issue by enticing a vulnerable user into downloading and opening a malicious file.