Secunia Logo  


Secunia PSI WorldMap
 
CVE Reference: CVE-2005-0578
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2005-0578

Description:
Firefox before 1.0.1 and Mozilla Suite before 1.7.6 use a predictable filename for the plugin temporary directory, which allows local users to delete arbitrary files of other users via a symlink attack on the plugtmp directory.

CVE Status:
Candidate

References:

REDHAT
  http://www.redhat.com/support/errata/RHSA-2005-384.html
  http://www.redhat.com/support/errata/RHSA-2005-176.html

GENTOO
  http://www.gentoo.org/security/en/glsa/glsa-200503-10.xml
  http://www.gentoo.org/security/en/glsa/glsa-200503-30.xml

CONFIRM
  http://www.mozilla.org/security/announce/mfsa2005-28.html

BID
  12659


Return to the previous page.