Netscape 7.0 and Mozilla 5.0 do not immediately delete messages in the trash folder when users select the Empty Trash option, which could allow local users to access deleted messages.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Mozilla | Mozilla | 5.0 (including) | 5.0 (including) |
| Navigator | Netscape | 7.0 (including) | 7.0 (including) |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-12/0277.html
- http://www.iss.net/security_center/static/10963.php
- http://www.securityfocus.com/bid/6499
- http://www.securitytracker.com/id?1005871
- http://archives.neohapsis.com/archives/bugtraq/2002-12/0277.html
- http://www.iss.net/security_center/static/10963.php
- http://www.securityfocus.com/bid/6499
- http://www.securitytracker.com/id?1005871