Lucene search
Mozilla FoundationMFSA2012-09HistoryJan 31, 2012 - 12:00 a.m.
Firefox Recovery Key.html is saved with unsafe permission — Mozilla
2012-01-3100:00:00
Mozilla Foundation
www.mozilla.org
15
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.2%
magicant starmen reported that if a user chooses to export their Firefox Sync key the “Firefox Recovery Key.html” file is saved with incorrect permissions, making the file contents potentially readable by other users on Linux and OS X systems.
Related
securityvulns
securityvulns
Mozilla Foundation Security Advisory 2012-09
2012-02-03 00:00:00
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2012-02-03 00:00:00
ubuntucve
ubuntucve
CVE-2012-0450
2012-02-01 00:00:00
openvas
openvas
prion
prion
Code injection
2012-02-01 16:55:00
cve
cve
CVE-2012-0450
2012-02-01 16:55:00
nessus
nessus
Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : mozvoikko update (USN-1355-2)
2012-02-06 00:00:00
Mozilla Thunderbird 9.0 Multiple Vulnerabilities
2012-02-07 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2012-02-03 00:00:00
ubufox and webfav update
2012-02-03 00:00:00
Mozvoikko update
2012-02-03 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2012-01-31 00:00:00
suse
suse
MozillaFirefox: Version 10 (important)
2012-02-09 19:10:49
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.2%
Related for MFSA2012-09