Firefox before 1.0.1 and Mozilla Suite before 1.7.6 use a predictable filename for the plugin temporary directory, which allows local users to delete arbitrary files of other users via a symlink attack on the plugtmp directory.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2005-05-01 21:00
Updated : 2017-10-10 18:29
NVD link : CVE-2005-0578
Mitre link : CVE-2005-0578
JSON object : View
CWE
Products Affected
mozilla
- firefox
- mozilla