File stealing by changing input type Claus Jørgensen reports that a text input box can be pre-filled with a filename and then turned into a file-upload control with the contents intact, allowing a malicious website the ability to steal any local file whose name they can guess. Jesse Ruderman reports a variation, changing the type of the input control in an event handler to work around some of the initial checks. Workaround Upgrade to fixed version. References [1]https://bugzilla.mozilla.org/show_bug.cgi?id=325947 [2]https://bugzilla.mozilla.org/show_bug.cgi?id=328566 This issue also affects FC4
Lifting embargo
This bug was fixed for FC4 in Fedora Update FEDORA-2006-488 <http://www.redhat.com/archives/fedora-package-announce/2006-May/msg00019.html>. This bug was fixed for FC5 in Fedora Update FEDORA-2006-487 <http://www.redhat.com/archives/fedora-package-announce/2006-May/msg00018.html>.