| Revision Date: | 2014-10-06 | Version: | 21 |
| Title: | Privilege escalation through Mozilla Maintenance Service Installer |
| Description: | maintenservice_installer.exe in the Maintenance Service Installer in Mozilla Firefox before 29.0 and Firefox ESR 24.x before 24.5 on Windows allows local users to gain privileges by placing a Trojan horse DLL file into a temporary directory at an unspecified point in the update process. |
| Family: | windows | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2014-1520
|
| Platform(s): | Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Microsoft Windows XP
| Product(s): | Mozilla Firefox
Mozilla Firefox ESR
|
| Definition Synopsis |
| Related to Mozilla Firefox Mainline Mozilla Firefox Mainline release is installed
AND Mozilla Firefox Mainline version less than 29
OR Related to Mozilla Firefox ESR
Mozilla Firefox ESR is installed
AND Mozilla Firefox ESR version less than 24.5
|