|Directory traversal vulnerability in Mozilla Firefox before 18.104.22.168
and 3.x before 3.0.2, Thunderbird before 22.214.171.124, and SeaMonkey
before 1.1.12 allows remote attackers to bypass "restrictions imposed
on local HTML files," and obtain sensitive information and prompt
users to write this information into a file, via directory traversal
sequences in a resource: URI.