PT-2014-5312 · Ncsa · Ncsa Mosaic

Published

2014-05-08

Updated

2014-05-08

CVE-2014-3425

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions NCSA Mosaic versions 2.0 and earlier

Description The issue allows local users to cause a denial of service, also referred to as a "remote control" outage. This is achieved by creating a /tmp/xmosaic.pid file for every possible PID, which leads to the denial of service.

Recommendations For versions 2.0 and earlier, consider restricting access to the /tmp directory to prevent the creation of multiple /tmp/xmosaic.pid files, thereby minimizing the risk of a denial of service.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2014-3425

Affected Products

Ncsa Mosaic

PT-2014-5312 · Ncsa · Ncsa Mosaic

CVE-2014-3425

Related Identifiers

Affected Products

References · 3