exploitDog

GHSA-2vph-3h86-9f5r

Опубликовано: 29 апр. 2022

Источник: github

Github: Не прошло ревью

Описание

The XPInstall installer in Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 sets insecure permissions for certain installed files within xpi packages, which could allow local users to overwrite arbitrary files or execute arbitrary code.

The XPInstall installer in Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 sets insecure permissions for certain installed files within xpi packages, which could allow local users to overwrite arbitrary files or execute arbitrary code.

Ссылки

EPSS

Процентиль: 35%

0.00144

Низкий

CVE ID

Связанные уязвимости

CVE-2004-0906

redhat

больше 21 года назад

The XPInstall installer in Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 sets insecure permissions for certain installed files within xpi packages, which could allow local users to overwrite arbitrary files or execute arbitrary code.

CVE-2004-0906

nvd

больше 20 лет назад

The XPInstall installer in Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 sets insecure permissions for certain installed files within xpi packages, which could allow local users to overwrite arbitrary files or execute arbitrary code.

CVE-2004-0906

debian

больше 20 лет назад

The XPInstall installer in Mozilla Firefox before the Preview Release, ...

EPSS

Процентиль: 35%

0.00144

Низкий

CVE ID