mozilla: symlink attack
| Package(s): | mozilla | CVE #(s): | CAN-2005-2353 | ||||||||
| Created: | October 7, 2005 | Updated: | October 10, 2005 | ||||||||
| Description: | The run-mozilla.sh script, with debugging enabled, would allow local users to create or overwrite arbitrary files via a symlink attack on temporary files. | ||||||||||
| Alerts: |
| ||||||||||