Back to search
CVE-2014-1520
Published: Apr 30, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
maintenservice_installer.exe in the Maintenance Service Installer in Mozilla Firefox before 29.0 and Firefox ESR 24.x before 24.5 on Windows allows local users to gain privileges by placing a Trojan horse DLL file into a temporary directory at an unspecified point in the update process.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://bugzilla.mozilla.org/show_bug.cgi?id=961676
x_refsource_CONFIRM
FEDORA-2014-5833
vendor-advisory
x_refsource_FEDORA
GLSA-201504-01
vendor-advisory
x_refsource_GENTOO
59866
third-party-advisory
x_refsource_SECUNIA
1030163
vdb-entry
x_refsource_SECTRACK
http://www.mozilla.org/security/announce/2014/mfsa2014-35.html
x_refsource_CONFIRM
FEDORA-2014-5829
vendor-advisory
x_refsource_FEDORA
20210308 Unholy CRAP: Moziila's executable installers
mailing-list
x_refsource_FULLDISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now