Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-2980
HistoryAug 18, 2011 - 6:55 p.m.

CVE-2011-2980

2011-08-1818:55:00
NVD-CWE-Other
[email protected]
web.nvd.nist.gov
34
cve-2011-2980
untrusted search path
thinkpadsensor::startup
mozilla firefox
thunderbird
privilege escalation
trojan horse dll

8.7 High

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.018 Low

EPSS

Percentile

88.0%

JSON

Untrusted search path vulnerability in the ThinkPadSensor::Startup function in Mozilla Firefox before 3.6.20, Thunderbird 3.x before 3.1.12, allows local users to gain privileges by leveraging write access in an unspecified directory to place a Trojan horse DLL that is loaded into the running Firefox process.

Related

prion 1
saint 4
ubuntucve 1
checkpoint_advisories 1
openvas 9
securityvulns 3
nessus 16
suse 4
mozilla 2
seebug 1
freebsd 1
gentoo 1
prion
prion
Design/Logic Flaw
2011-08-18 18:55:00
saint
saint
Firefox sensor.dll Insecure Library Loading
2011-09-13 00:00:00
Firefox sensor.dll Insecure Library Loading
2011-09-13 00:00:00
Firefox sensor.dll Insecure Library Loading
2011-09-13 00:00:00
ubuntucve
ubuntucve
CVE-2011-2980
2011-08-18 00:00:00
checkpoint_advisories
checkpoint_advisories
Mozilla Firefox and Thunderbird sensor.dll Insecure Library Loading (CVE-2011-2980)
2011-09-27 00:00:00
openvas
openvas
Mozilla Firefox Untrusted Search Path Vulnerability (Windows)
2011-09-09 00:00:00
Mozilla Firefox Untrusted Search Path Vulnerability - Windows
2011-09-09 00:00:00
Mandriva Update for mozilla MDVSA-2011:127 (mozilla)
2011-08-19 00:00:00
securityvulns
securityvulns
ASPR #2011-08-18-2: Remote Binary Planting in Mozilla Thunderbird
2011-08-19 00:00:00
ASPR #2011-08-18-1: Remote Binary Planting in Mozilla Firefox
2011-08-19 00:00:00
Mozilla Fireox / Seamonkey / Thunderbird multiple security vulnerabilities
2011-08-19 00:00:00
nessus
nessus
SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 7712)
2011-08-30 00:00:00
SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 7713)
2011-12-13 00:00:00
Mozilla Thunderbird 3.1 < 3.1.12 Multiple Vulnerabilities
2011-08-17 00:00:00
suse
suse
MozillaThunderbird: Update to 3.1.12 (important)
2011-08-29 20:08:38
Security update for Mozilla Firefox (important)
2011-08-29 21:08:22
MozillaFirefox: Update to Firefox 3.6.20 (important)
2011-08-26 20:08:19
mozilla
mozilla
Security issues addressed in Thunderbird 3.1.12 — Mozilla
2011-08-16 00:00:00
Security issues addressed in Firefox 3.6.20 — Mozilla
2011-08-16 00:00:00
seebug
seebug
Mozilla Firefox/Thunderbird/SeaMonkey多个安全漏洞
2011-08-18 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2011-08-16 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00

8.7 High

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.018 Low

EPSS

Percentile

88.0%

JSON
Related for CVE-2011-2980
prion1saint4ubuntucve1checkpoint_advisories1openvas9securityvulns3nessus16suse4mozilla2seebug1freebsd1gentoo1