Lucene search

K

MozillaCVELIST:CVE-2015-4481

HistoryAug 16, 2015 - 1:00 a.m.

CVE-2015-4481

2015-08-1601:00:00

mozilla

www.cve.org

8.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.2%

Race condition in the Mozilla Maintenance Service in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 on Windows allows local users to write to arbitrary files and consequently gain privileges via vectors involving a hard link to a log file during an update.

References

lists.opensuse.org/opensuse-security-announce/2015-08/msg00014.html

lists.opensuse.org/opensuse-security-announce/2015-08/msg00015.html

lists.opensuse.org/opensuse-updates/2015-08/msg00030.html

lists.opensuse.org/opensuse-updates/2015-08/msg00031.html

www.mozilla.org/security/announce/2015/mfsa2015-84.html

www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

www.securitytracker.com/id/1033247

www.securitytracker.com/id/1033372

bugzilla.mozilla.org/show_bug.cgi?id=1171518

security.gentoo.org/glsa/201605-06

www.exploit-db.com/exploits/37925/

8.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.2%

Related for CVELIST:CVE-2015-4481

nvd1 cve1 ubuntucve1 prion1 zdt1 mozilla1 googleprojectzero1 openvas4 nessus9 kaspersky1 freebsd1 ibm1 suse2 securityvulns1 gentoo1