Mozilla Firefox and SeaMonkey Download Filename Spoofing Vulnerability

Mozilla Firefox and SeaMonkey are prone to a spoofing vulnerability.

Attackers can exploit this issue to spoof the filenames displayed in the download dialog box and trick a user into downloading executable files.

NOTE: This issue was previously covered in BID 36843 (Mozilla Firefox and SeaMonkey MFSA 2009-52 through -64 Multiple Vulnerabilities), but has been assigned its own record to better document it.


Privacy Statement
Copyright 2010, SecurityFocus