|Directory traversal vulnerability in Mozilla Firefox before 220.127.116.11
and 3.x before 3.0.2, Thunderbird before 18.104.22.168, and SeaMonkey
before 1.1.12 allows remote attackers to bypass "restrictions imposed
on local HTML files," and obtain sensitive information and prompt
users to write this information into a file, via directory traversal
sequences in a resource: URI.