CVE-2005-1575Mozilla Firefox vulnerability

3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.5%
top 35.46%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Mozilla Firefox
Timeline
PublishedMay 14
Latest updateSep 3

Description

The file download dialog in Mozilla Firefox 0.10.1 and 1.0 for Windows allows remote attackers to hide the real file types of downloaded files via the Content-Type HTTP header and a filename containing whitespace, dots, or ASCII byte 160.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDmozilla/firefox0.10.1, 1.0+1

🔴Vulnerability Details

1
GHSA
GHSA-2fxg-qgwq-4h9r: The file download dialog in Mozilla Firefox 02022-05-01

📄Research Papers

1
arXiv
From Attack Descriptions to Vulnerabilities: A Sentence Transformer-Based Approach2025-09-03