Revision Date: | 2014-10-06 | Version: | 21 |
Title: | Privilege escalation through Mozilla Maintenance Service Installer |
Description: | maintenservice_installer.exe in the Maintenance Service Installer in Mozilla Firefox before 29.0 and Firefox ESR 24.x before 24.5 on Windows allows local users to gain privileges by placing a Trojan horse DLL file into a temporary directory at an unspecified point in the update process. |
Family: | windows | Class: | vulnerability |
Status: | ACCEPTED | Reference(s): | CVE-2014-1520
|
Platform(s): | Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows Vista Microsoft Windows XP
| Product(s): | Mozilla Firefox Mozilla Firefox ESR
|
Definition Synopsis |
Related to Mozilla Firefox Mainline Mozilla Firefox Mainline release is installed
AND Mozilla Firefox Mainline version less than 29
OR Related to Mozilla Firefox ESR
Mozilla Firefox ESR is installed
AND Mozilla Firefox ESR version less than 24.5
|