[原文]The file download dialog in Mozilla Firefox 0.10.1 and 1.0 for Windows allows remote attackers to hide the real file types of downloaded files via the Content-Type HTTP header and a filename containing whitespace, dots, or ASCII byte 160.
Mozilla Firefox Content-Type Crafted Header Download Dialog Spoofing
Remote / Network Access
Loss of Integrity
Mozilla Firefox contains a flaw that may allow a malicious user to spoof file types in the file download dialog. The issue exists because file download dialog does not properly validate the filename and the "Content-Type" HTTP header before displaying it. It is possible that the flaw may trick a user into executing malware if the file is opened through the file download dialog resulting in a loss of integrity.
Upgrade to version 1.0.1 or higher, as it has been reported to partially fix this vulnerability. An upgrade is required as there are no known workarounds.