Описание
Untrusted search path vulnerability in the ThinkPadSensor::Startup function in Mozilla Firefox before 3.6.20, Thunderbird 3.x before 3.1.12, allows local users to gain privileges by leveraging write access in an unspecified directory to place a Trojan horse DLL that is loaded into the running Firefox process.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 7.0~b1+build1+nobinonly-0ubuntu1 |
| hardy | ignored | end of life |
| lucid | released | 3.6.20+build1+nobinonly-0ubuntu0.10.04.1 |
| maverick | released | 3.6.20+build1+nobinonly-0ubuntu0.10.10.1 |
| natty | released | 6.0+build1+nobinonly-0ubuntu0.11.04.1 |
| upstream | released | 3.6.20, 6.0 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | ignored | |
| hardy | ignored | end of life |
| lucid | ignored | |
| maverick | ignored | |
| natty | ignored | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 6.0~b3+build1+nobinonly-0ubuntu2 |
| hardy | ignored | end of life |
| lucid | released | 3.1.13+build1+nobinonly-0ubuntu0.10.04.1 |
| maverick | released | 3.1.13+build1+nobinonly-0ubuntu0.10.10.1 |
| natty | released | 3.1.13+build1+nobinonly-0ubuntu0.11.04.1 |
| upstream | released | 3.1.12 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | ignored | end of life |
| lucid | released | 1.9.2.20+build1+nobinonly-0ubuntu0.10.04.1 |
| maverick | released | 1.9.2.20+build1+nobinonly-0ubuntu0.10.10.1 |
| natty | ignored | |
| upstream | released | 1.9.2.20 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | DNE | |
| maverick | DNE | |
| natty | ignored | |
| upstream | needs-triage |
Показывать по
Ссылки на источники
EPSS
7.2 High
CVSS2
Связанные уязвимости
Untrusted search path vulnerability in the ThinkPadSensor::Startup function in Mozilla Firefox before 3.6.20, Thunderbird 3.x before 3.1.12, allows local users to gain privileges by leveraging write access in an unspecified directory to place a Trojan horse DLL that is loaded into the running Firefox process.
Untrusted search path vulnerability in the ThinkPadSensor::Startup fun ...
Untrusted search path vulnerability in the ThinkPadSensor::Startup function in Mozilla Firefox before 3.6.20, Thunderbird 3.x before 3.1.12, allows local users to gain privileges by leveraging write access in an unspecified directory to place a Trojan horse DLL that is loaded into the running Firefox process.
EPSS
7.2 High
CVSS2