CVE-2000-0409 - CVE Details

Description

Netscape 4.73 and earlier follows symlinks when it imports a new certificate, which allows local users to overwrite files of the user importing the certificate.

Severity

Overall Severity: N/A

CVSS Metrics

Type	Score	Severity	Vector

Affected Products

netscape - communicator

Affected Versions:

netscape - communicator

Affected Versions:

netscape - communicator

Affected Versions:

netscape - communicator

Affected Versions:

4.51

netscape - communicator

Affected Versions:

4.61

netscape - communicator

Affected Versions:

4.72

netscape - communicator

Affected Versions:

4.73

References

http://archives.neohapsis.com/archives/bugtraq/2000-05/0126.html
http://www.securityfocus.com/bid/1201
http://archives.neohapsis.com/archives/bugtraq/2000-05/0126.html
http://www.securityfocus.com/bid/1201