The Linux install .tar.gz archives for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8, create certain files with insecure permissions, which could allow local users to overwrite those files and execute arbitrary code.
References
Configurations
Configuration 1 (hide)
|
History
20 Nov 2024, 23:49
Type | Values Removed | Values Added |
---|---|---|
References | () http://bugzilla.mozilla.org/show_bug.cgi?id=254303 - Patch | |
References | () http://security.gentoo.org/glsa/glsa-200409-26.xml - | |
References | () http://www.mozilla.org/projects/security/known-vulnerabilities.html#mozilla1.7.3 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/17373 - |
Information
Published : 2004-12-31 05:00
Updated : 2024-11-20 23:49
NVD link : CVE-2004-0907
Mitre link : CVE-2004-0907
CVE.ORG link : CVE-2004-0907
JSON object : View
Products Affected
mozilla
- thunderbird
- mozilla
CWE