VDB

GCVE-110-CERTCC-2001-356323

GCVE-110-CERTCC-2001-356323
Advisory Published
Vulnetix · Advisory published August 28, 2001
During installation, Netscape 6.0.1 creates a temporary file with insecure options and a predictable name in a world-writable location. By using a symbolic link attack, an attacker could cause overwrite of arbitrary files.

Risk Scores

certcc-cam
certcc-cam
impact8population10exploitation10widely_known15score_current1.575ease_of_exploitation3

References

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›