CVE-2007-3073

Published: Jun 6, 2007Modified: Apr 23, 2026

7.8

Vector

AV:N/AC:L/Au:N/C:C/I:N/A:N

Exploitability: 10.0 / Impact: 6.9

Source: NVD

Description

Directory traversal vulnerability in Mozilla Firefox 2.0.0.4 and earlier on Mac OS X and Unix allows remote attackers to read arbitrary files via ..%2F (dot dot encoded slash) sequences in a resource:// URI.

Affected (1)

Products: Mozilla: Firefox

Mozilla

1 product

Firefox

Configuration A

1 vulnerable · 42 platform

Vulnerable Software	Affected Versions
Mozilla Firefox	Up to 2.0.0.4

Running on/with	Platform Versions
Apple Mac Os X	All versions
Apple Mac Os X	Version 10.0.1
Apple Mac Os X	Version 10.0.2
Apple Mac Os X	Version 10.0.3
Apple Mac Os X	Version 10.0.4
Apple Mac Os X	Version 10.0
Apple Mac Os X	Version 10.1.1
Apple Mac Os X	Version 10.1.2
Apple Mac Os X	Version 10.1.3
Apple Mac Os X	Version 10.1.4
Apple Mac Os X	Version 10.1.5
Apple Mac Os X	Version 10.1
Apple Mac Os X	Version 10.2.1
Apple Mac Os X	Version 10.2.2
Apple Mac Os X	Version 10.2.3
Apple Mac Os X	Version 10.2.4
Apple Mac Os X	Version 10.2.5
Apple Mac Os X	Version 10.2.6
Apple Mac Os X	Version 10.2.7
Apple Mac Os X	Version 10.2.8
Apple Mac Os X	Version 10.2
Apple Mac Os X	Version 10.3.1
Apple Mac Os X	Version 10.3.2
Apple Mac Os X	Version 10.3.3
Apple Mac Os X	Version 10.3.4
Apple Mac Os X	Version 10.3.5
Apple Mac Os X	Version 10.3.6
Apple Mac Os X	Version 10.3.7
Apple Mac Os X	Version 10.3.8
Apple Mac Os X	Version 10.3.9
Apple Mac Os X	Version 10.3
Apple Mac Os X	Version 10.4.1
Apple Mac Os X	Version 10.4.2
Apple Mac Os X	Version 10.4.3
Apple Mac Os X	Version 10.4.4
Apple Mac Os X	Version 10.4.5
Apple Mac Os X	Version 10.4.6
Apple Mac Os X	Version 10.4.7
Apple Mac Os X	Version 10.4.8
Apple Mac Os X	Version 10.4.9
Apple Mac Os X	Version 10.4
Unix Unix	All versions