Mozilla Firefox before 2.0.0.8, Thunderbird before 2.0.0.8, and SeaMonkey before 1.1.5 allows remote attackers to execute arbitrary commands via a (1) mailto, (2) nntp, (3) news, or (4) snews URI with invalid "%" encoding, related to improper file type handling on Windows XP with Internet Explorer 7 installed, a variant of CVE-2007-3845.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2007-09-12T20:00:00
Updated: 2007-10-23T09:00:00
Reserved: 2007-09-12T00:00:00
Link: CVE-2007-4841
JSON object: View
NVD Information
Status : Modified
Published: 2007-09-12T20:17:00.000
Modified: 2019-10-09T22:53:53.543
Link: CVE-2007-4841
JSON object: View
Redhat Information
No data.
CWE