Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Netscape/Mozilla/Galeon Local File Enumeration (deprecated)

Medium

Synopsis

The remote host may give an attacker information useful for future attacks.

Description

The remote host is running a version of the Mozilla browser that could allow a remote attacker to detect the existence of files on the local file system of the web client accessing the attackers page. The vulnerability is caused by improper handling of embedded Cascading Style-Sheet (CSS) <LINK> elements in the broswer.

Solution

Upgrade to the latest version of Mozilla