← CVECheck
HomeVulnerabilities

CVE-2002-0354 — MEDIUM severity vulnerability (The XMLHttpRequest object (XMLHTTP) in Netscape 6.1 and Mozi)

The XMLHttpRequest object (XMLHTTP) in Netscape 6.1 and Mozilla 0.9.7 allows remote attackers to read arbitrary files and list directories on a client system by opening a URL that redirects the browser to the file on the client, then reading the result using the responseText property.

CVE IDCVE-2002-0354
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:N/I:P/A:N
CWENVD-CWE-Other
StatusModified
Published2002-06-25
Last modified2026-04-16
DescriptionThe XMLHttpRequest object (XMLHTTP) in Netscape 6.1 and Mozilla 0.9.7 allows remote attackers to read arbitrary files and list directories on a client system by opening a URL that redirects the browser to the file on the client, then reading the result using the responseText property.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →