VULHUB ™

The Mozilla Netscape Navigator plug-in is prone to a path disclosure issue. JavaScript may be used to communicate with the plug-in. It is possible to access the filename of the plug-in using JavaScript, and on some systems this also will expose the full path to the plug-in. If the plug-in is located in the home directory of the client user, this also has the potential to disclose their username.

The Mozilla Netscape Navigator plug-in is prone to a path disclosure issue. JavaScript may be used to communicate with the plug-in. It is possible to access the filename of the plug-in using JavaScript, and on some systems this also will expose the full path to the plug-in. If the plug-in is located in the home directory of the client user, this also has the potential to disclose their username.