Oval Definition:	oval:org.opensuse.security:def:20062894
Revision Date: 2015-11-16 Version: 1 Title: CVE-2006-2894 Description: Mozilla Firefox 1.5.0.4, 2.0.x before 2.0.0.8, Mozilla Suite 1.7.13, Mozilla SeaMonkey 1.0.2 and other versions before 1.1.5, and Netscape 8.1 and earlier allow user-assisted remote attackers to read arbitrary files by tricking a user into typing the characters of the target filename in a text box and using the OnKeyDown, OnKeyPress, and OnKeyUp Javascript keystroke events to change the focus and cause those characters to be inserted into a file upload input control, which can then upload the file when the user submits the form. Family: unix Class: vulnerability Status: Reference(s): CVE-2006-2894 Platform(s): Novell Linux Desktop 9 for x86 Novell Linux Desktop 9 for x86_64 Open Enterprise Server openSUSE 10.3 SUSE LINUX 10.0 SUSE LINUX 10.1 SuSE Linux Enterprise Server 8 for AMD64 SuSE Linux Enterprise Server 8 for IBM iSeries and IBM pSeries SuSE Linux Enterprise Server 8 for IBM zSeries SuSE Linux Enterprise Server 8 for IPF SuSE Linux Openexchange Server 4 SUSE LINUX Retail Solution 8 SuSE Linux School Server for i386 SuSE Linux Standard Server 8 UnitedLinux 1.0 Product(s):
BACK