You are here

CVE-2009-3274

Vincent (CVE) Danen's picture
Mozilla Firefox 3.6a1, 3.5.3, 3.5.2, and earlier 3.5.x versions, and 3.0.14 and earlier 2.x and 3.x versions, on Linux uses a predictable /tmp pathname for files selected from the Downloads window, which allows local users to replace an arbitrary downloaded file by placing a file in a /tmp location before the download occurs, related to the Download Manager component. NOTE: some of these details are obtained from third party information.

Details Source

Mitre

Public Date

2009-09-09 00:00:00

Impact

Moderate

Bugzilla

CVE-2009-3274 Firefox: Predictable /tmp pathname use

Bugzilla ID

524 815

CVSS Status

verified

Base Score

3.60

Base Metrics

AV:L/AC:L/Au:N/C:P/I:P/A:N

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 3 (seamonkey) RHSA-2009:1531 2009-10-27
Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server) (thunderbird) RHSA-2010:0153 2010-03-17
Red Hat Enterprise Linux 5 (thunderbird) RHSA-2010:0153 2010-03-17
Red Hat Enterprise Linux 5 RHSA-2009:1530 2009-10-27
Red Hat Enterprise Linux 4 RHSA-2009:1530 2009-10-27
Red Hat Enterprise Linux 4 (seamonkey) RHSA-2009:1531 2009-10-27
Red Hat Enterprise Linux 4 (thunderbird) RHSA-2010:0154 2010-03-17

Affected Packages State

Platform Package State
Red Hat Enterprise Linux version 5 xulrunner 1.9.0.15-3.el5_4 Fixed
Red Hat Enterprise Linux version 5 nspr 4.7.6-1.el5_4 Fixed
Red Hat Enterprise Linux version 4 nspr 4.7.6-1.el4_8 Fixed