2.1

CVE-2005-0142

Firefox 0.9, Thunderbird 0.6 and other versions before 0.9, and Mozilla 1.7 before 1.7.5 save temporary files with world-readable permissions, which allows local users to read certain web content or attachments that belong to other users, e.g. content that is managed by helper applications such as PDF.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MozillaFirefox Version0.9
MozillaMozilla Version1.7
MozillaMozilla Version1.7 Updaterc3
MozillaMozilla Version1.7.1
MozillaMozilla Version1.7.2
MozillaMozilla Version1.7.3
MozillaThunderbird Version0.6
MozillaThunderbird Version0.7
MozillaThunderbird Version0.8
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.3% 0.216
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.redhat.com/support/errata/RHSA-2005-335.html
Patch
Vendor Advisory
http://secunia.com/advisories/19823
http://www.novell.com/linux/security/advisories/2006_04_25.html
http://www.redhat.com/support/errata/RHSA-2005-384.html
http://www.mozilla.org/security/announce/mfsa2005-02.html
Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=251297
https://exchange.xforce.ibmcloud.com/vulnerabilities/17832
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100056
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9543