EUVD-2013-0809

Malware in sbrugna...

SUSE CVE-2013-0798

Mozilla Firefox before 20.0 on Android uses world-writable and world-readable permissions for the apptmp installation directory in the local filesystem, which allows attackers to modify add-ons before installation via an application that leverages the time window during which apptmp is used...

CVE-2013-0798

Mozilla Firefox before 20.0 on Android uses world-writable and world-readable permissions for the apptmp installation directory in the local filesystem, which allows attackers to modify add-ons before installation via an application that leverages the time window during which apptmp is used...

CVE-2013-0798

Mozilla Firefox before 20.0 on Android uses world-writable and world-readable permissions for the apptmp installation directory in the local filesystem, which allows attackers to modify add-ons before installation via an application that leverages the time window during which apptmp is used...

Design/Logic Flaw

Mozilla Firefox before 20.0 on Android uses world-writable and world-readable permissions for the apptmp installation directory in the local filesystem, which allows attackers to modify add-ons before installation via an application that leverages the time window during which apptmp is used...

CVE-2013-0798

CVE-2013-0798 affects Firefox for Android. The issue is that the app_tmp directory used during addon installation is world-writable and world-readable, allowing an attacker to replace or modify addons during the window when they are staged before installation. This is specific to Firefox for Andr...