Red Hat Bugzilla – Bug 145606
CAN-2005-0142 Opened attachments are temporarily saved world-readable
Last modified: 2007-11-30 17:07:06 EST
Mozilla Security Advisory MSA05-002
Title: Opened attachments are temporarily saved world-readable
Severity: Moderate (on a multiuser computer)
Fixed in: Firefox 1.0
Mozilla Suite 1.7.5
Vulnerable: Firefox 0.9
Mozilla software released after March 2004 saves some temporary files with
world-readable permissions. In the browser this is primarily
content fed to helper applications (for example, PDF files), and in
the mail clients it is attachments.
Do not open sensitive mail attachments on a shared multiuser machine.
Upgrade to fixed version
This issue should affect RHEL2.1
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.