CVE-CVE-2004-1449 | UNKNOWN Severity | CVEDatabase.com

Description

Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7 allows remote attackers to determine the location of files on a user's hard drive by obscuring a file upload control and tricking the user into dragging text into that control.

CVSS Metrics

Vector: AV:N/AC:H/Au:N/C:P/I:N/A:N
Access Vector: network
Access Cmplx: high
Auth: none
Confidentiality: partial
Integrity: none
Availability: none
Weaknesses: NVD-CWE-Other

Metadata

Primary Vendor: FIREBIRDSQL
Published: 12/31/2004
Last Modified: 4/3/2025
Source: NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

firebirdsql : firebirdmozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : mozillamozilla : thunderbirdmozilla : thunderbirdmozilla : thunderbirdmozilla : thunderbirdmozilla : thunderbirdmozilla : thunderbird

AI-Powered Remediation

Generate remediation guidance or a C-suite brief for this vulnerability.

Executive Intelligence Brief

View on NIST NVD