Mozilla < 0.9 Predictable Temporary File Name File Deletion (deprecated)

High Nessus Network Monitor Plugin ID 1746

Synopsis

The remote host is using a vulnerable version of the Mozilla web browser.

Description

The remote host is using a version of the Mozilla web browser that uses predictable temporary file names. A local attacker may use this flaw to delete arbitrary files on this host.

Solution

Upgrade to Mozilla 0.9 or higher.

Plugin Details

Severity: High

ID: 1746

File Name: 1746.prm

Family: Web Clients

Published: 2004/08/20

Modified: 2015/06/01

Dependencies: 1769

Risk Information

Risk Factor: High

Temporal Vector: CVSS2#E:H/RL:U/RC:ND

Vulnerability Information

CPE: cpe:/a:mozilla:mozilla:0.8

Reference Information

BID: 3743