Vulnerability Database

289,782

Total vulnerabilities in the database

CVE-2005-1576

The file download dialog in Mozilla Firefox 0.10.1 and 1.0 for Windows uses the Content-Type HTTP header to determine the file type, but saves the original file extension when "Save to Disk" is selected, which allows remote attackers to hide the real file types of downloaded files.

  • Published: May 12, 2005
  • Updated: Apr 13, 2023
  • CVE: CVE-2005-1576
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 2.6
  • AV:N/AC:H/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Software From Fixed in
mozilla / firefox 0.10.1 0.10.1.x
mozilla / firefox 1.0 1.0.x