PT-2013-3333 · Mozilla · Firefox
Published
2013-06-26
·
Updated
2017-09-19
·
CVE-2013-1700
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Mozilla Firefox versions prior to 22.0
Description
The issue arises from the Mozilla Maintenance Service in Mozilla Firefox not properly handling the inability to launch the Mozilla Updater executable file. This allows local users to gain privileges through vectors involving the placement of a Trojan horse executable file at an arbitrary location.
Recommendations
For versions prior to 22.0, update to version 22.0 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Firefox