The Mozilla Maintenance Service in Mozilla Firefox prior to 22.0 on Windows does not properly handle inability to launch the Mozilla Updater executable file, which allows local users to gain privileges via vectors involving placement of a Trojan horse executable file at an arbitrary location.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox |
||
mozilla firefox 19.0 |
||
mozilla firefox 19.0.1 |
||
mozilla firefox 19.0.2 |
||
mozilla firefox 20.0 |
||
mozilla firefox 20.0.1 |