Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Mozilla Predictable Temporary File Symbolic Link Arbitrary File Overwrite (deprecated)

Low

Synopsis

The remote host is vulnerable to a local flaw in the way that it creates temporary files.

Description

The remote host is running a version of the Mozilla browser that follows symbolic links on lock files created in the /tmp directory, allowing a local attacker to create arbitrary files in the security context of the Mozilla user.

Solution

Upgrade to the latest version of Mozilla