PT-2012-5102 · Mozilla+2 · Firefox+5
Masato Kinugawa
·
Publicado
2012-08-28
·
Atualizado
2024-10-21
·
CVE-2012-3974
CVSS v2.0
6.9
Média
| Vetor | AV:L/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Mozilla Firefox versions prior to 15.0
Firefox ESR versions prior to 10.0.7
Thunderbird versions prior to 15.0
Thunderbird ESR versions prior to 10.0.7
Description
The issue allows local users to gain privileges via a Trojan horse executable file in a root directory due to an untrusted search path vulnerability in the installer on Windows.
Recommendations
For Mozilla Firefox versions prior to 15.0, update to version 15.0 or later.
For Firefox ESR versions prior to 10.0.7, update to version 10.0.7 or later.
For Thunderbird versions prior to 15.0, update to version 15.0 or later.
For Thunderbird ESR versions prior to 10.0.7, update to version 10.0.7 or later.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Firefox Esr
Firefox
Suse
Thunderbird
Thunderbird Esr
Windows