CVE-2000-0552

Name of the Vulnerable Software and Affected Versions ICQ 2000A

Description The issue allows local users to obtain sensitive information due to the creation of a world-readable temporary file during login, which is not deleted. This occurs in the ICQwebmail client for ICQ 2000A.

Recommendations For ICQ 2000A, consider implementing a secure method for handling temporary files, such as properly deleting them after use, to prevent sensitive information disclosure. As a temporary workaround, restrict access to the temporary files created during the login process to minimize the risk of exploitation.