exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

bind:CVE-2021-29951

exploitDog

bind:CVE-2021-29951

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 14

Количество 14

CVE-2021-29951

больше 4 лет назад

The Mozilla Maintenance Service granted SERVICE_START access to BUILTIN|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating (if an attacker spammed the 'Stop' command); but also exposed attack surface in the maintenance service. *Note: This issue only affected Windows operating systems older than Win 10 build 1709. Other operating systems are unaffected.*. This vulnerability affects Thunderbird < 78.10.1, Firefox < 87, and Firefox ESR < 78.10.1.

CVSS3: 6.5

EPSS: Низкий

CVE-2021-29951

почти 5 лет назад

The Mozilla Maintenance Service granted SERVICE_START access to BUILTIN|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating (if an attacker spammed the 'Stop' command); but also exposed attack surface in the maintenance service. *Note: This issue only affected Windows operating systems older than Win 10 build 1709. Other operating systems are unaffected.*. This vulnerability affects Thunderbird < 78.10.1, Firefox < 87, and Firefox ESR < 78.10.1.

CVSS3: 6.1

EPSS: Низкий

CVE-2021-29951

больше 4 лет назад

The Mozilla Maintenance Service granted SERVICE_START access to BUILTIN|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating (if an attacker spammed the 'Stop' command); but also exposed attack surface in the maintenance service. *Note: This issue only affected Windows operating systems older than Win 10 build 1709. Other operating systems are unaffected.*. This vulnerability affects Thunderbird < 78.10.1, Firefox < 87, and Firefox ESR < 78.10.1.

CVSS3: 6.5

EPSS: Низкий

CVE-2021-29951

больше 4 лет назад

The Mozilla Maintenance Service granted SERVICE_START access to BUILTI ...

CVSS3: 6.5

EPSS: Низкий

GHSA-rc27-w7x3-jmp4

больше 3 лет назад

The Mozilla Maintenance Service granted SERVICE_START access to BUILTIN|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating (if an attacker spammed the 'Stop' command); but also exposed attack surface in the maintenance service. *Note: This issue only affected Windows operating systems older than Win 10 build 1709. Other operating systems are unaffected.*. This vulnerability affects Thunderbird < 78.10.1, Firefox < 87, and Firefox ESR < 78.10.1.

CVSS3: 6.5

EPSS: Низкий

BDU:2022-06101

почти 5 лет назад

Уязвимость браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с небезопасным управлением привилегиями, позволяющая нарушителю, действующему удаленно, повысить свои привилегии

CVSS3: 6.5

EPSS: Низкий

openSUSE-SU-2021:1884-1

больше 4 лет назад

Security update for MozillaFirefox

EPSS: Низкий

openSUSE-SU-2021:0858-1

больше 4 лет назад

Security update for MozillaFirefox

EPSS: Низкий

SUSE-SU-2021:1919-1

больше 4 лет назад

Security update for MozillaFirefox

EPSS: Низкий

SUSE-SU-2021:1886-1

больше 4 лет назад

Security update for MozillaFirefox

EPSS: Низкий

SUSE-SU-2021:1884-1

больше 4 лет назад

Security update for MozillaFirefox

EPSS: Низкий

SUSE-SU-2021:14743-1

больше 4 лет назад

Security update for MozillaFirefox

EPSS: Низкий

openSUSE-SU-2021:1854-1

больше 4 лет назад

Security update for MozillaThunderbird

EPSS: Низкий

SUSE-SU-2021:1854-1

больше 4 лет назад

Security update for MozillaThunderbird

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	CVE-2021-29951 The Mozilla Maintenance Service granted SERVICE_START access to BUILTIN\|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating (if an attacker spammed the 'Stop' command); but also exposed attack surface in the maintenance service. Note: This issue only affected Windows operating systems older than Win 10 build 1709. Other operating systems are unaffected.. This vulnerability affects Thunderbird < 78.10.1, Firefox < 87, and Firefox ESR < 78.10.1.	CVSS3: 6.5	0% Низкий	больше 4 лет назад
	CVE-2021-29951 The Mozilla Maintenance Service granted SERVICE_START access to BUILTIN\|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating (if an attacker spammed the 'Stop' command); but also exposed attack surface in the maintenance service. Note: This issue only affected Windows operating systems older than Win 10 build 1709. Other operating systems are unaffected.. This vulnerability affects Thunderbird < 78.10.1, Firefox < 87, and Firefox ESR < 78.10.1.	CVSS3: 6.1	0% Низкий	почти 5 лет назад
	CVE-2021-29951 The Mozilla Maintenance Service granted SERVICE_START access to BUILTIN\|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating (if an attacker spammed the 'Stop' command); but also exposed attack surface in the maintenance service. Note: This issue only affected Windows operating systems older than Win 10 build 1709. Other operating systems are unaffected.. This vulnerability affects Thunderbird < 78.10.1, Firefox < 87, and Firefox ESR < 78.10.1.	CVSS3: 6.5	0% Низкий	больше 4 лет назад
	CVE-2021-29951 The Mozilla Maintenance Service granted SERVICE_START access to BUILTI ...	CVSS3: 6.5	0% Низкий	больше 4 лет назад
	GHSA-rc27-w7x3-jmp4 The Mozilla Maintenance Service granted SERVICE_START access to BUILTIN\|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent the browser update service from operating (if an attacker spammed the 'Stop' command); but also exposed attack surface in the maintenance service. Note: This issue only affected Windows operating systems older than Win 10 build 1709. Other operating systems are unaffected.. This vulnerability affects Thunderbird < 78.10.1, Firefox < 87, and Firefox ESR < 78.10.1.	CVSS3: 6.5	0% Низкий	больше 3 лет назад
	BDU:2022-06101 Уязвимость браузеров Mozilla Firefox, Firefox ESR и почтового клиента Thunderbird, связанная с небезопасным управлением привилегиями, позволяющая нарушителю, действующему удаленно, повысить свои привилегии	CVSS3: 6.5	0% Низкий	почти 5 лет назад
	openSUSE-SU-2021:1884-1 Security update for MozillaFirefox			больше 4 лет назад
	openSUSE-SU-2021:0858-1 Security update for MozillaFirefox			больше 4 лет назад
	SUSE-SU-2021:1919-1 Security update for MozillaFirefox			больше 4 лет назад
	SUSE-SU-2021:1886-1 Security update for MozillaFirefox			больше 4 лет назад
	SUSE-SU-2021:1884-1 Security update for MozillaFirefox			больше 4 лет назад
	SUSE-SU-2021:14743-1 Security update for MozillaFirefox			больше 4 лет назад
	openSUSE-SU-2021:1854-1 Security update for MozillaThunderbird			больше 4 лет назад
	SUSE-SU-2021:1854-1 Security update for MozillaThunderbird			больше 4 лет назад

Уязвимостей на страницу