CAN-2005-2968: Arbitrary code execution in Firefox and Mozilla
joey at infodrom.org
Wed Sep 21 04:17:15 UTC 2005
Firefox 1.0.6 and Mozilla 1.7.10 allows attackers to execute arbitrary
commands via shell metacharacters in a URL that is provided to the
browser on the command line, which is sent unfiltered to bash.
In the beginning was the word, and the word was content-type: text/plain
More information about the pkg-mozilla-maintainers