Mozilla Firefox File Download Truncation Extension Spoofing
Remote / Network Access
Attack Type Unknown
Loss of Integrity
Firefox contains a flaw that may allow a malicious user to spoof file extensions in the file download dialog. The issue is due to the truncation of long filenames. It is possible that the flaw may allow an attacker spoof the file extension resulting in a loss of integrity.
Upgrade to version 1.0 Preview Release or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.