Lucene search
Ubuntu.comUB:CVE-2011-2980HistoryAug 18, 2011 - 12:00 a.m.
CVE-2011-2980
2011-08-1800:00:00
ubuntu.com
ubuntu.com
15
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.018 Low
EPSS
Percentile
88.0%
Untrusted search path vulnerability in the ThinkPadSensor::Startup function
in Mozilla Firefox before 3.6.20, Thunderbird 3.x before 3.1.12, allows
local users to gain privileges by leveraging write access in an unspecified
directory to place a Trojan horse DLL that is loaded into the running
Firefox process.
Notes
| Author | Note |
|---|---|
| jdstrand | Windows only |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 10.04 | noarch | firefox | <ย 3.6.20+build1+nobinonly-0ubuntu0.10.04.1 | UNKNOWN |
| ubuntu | 10.10 | noarch | firefox | <ย 3.6.20+build1+nobinonly-0ubuntu0.10.10.1 | UNKNOWN |
| ubuntu | 11.04 | noarch | firefox | <ย 6.0+build1+nobinonly-0ubuntu0.11.04.1 | UNKNOWN |
| ubuntu | 10.04 | noarch | thunderbird | <ย 3.1.13+build1+nobinonly-0ubuntu0.10.04.1 | UNKNOWN |
| ubuntu | 10.10 | noarch | thunderbird | <ย 3.1.13+build1+nobinonly-0ubuntu0.10.10.1 | UNKNOWN |
| ubuntu | 11.04 | noarch | thunderbird | <ย 3.1.13+build1+nobinonly-0ubuntu0.11.04.1 | UNKNOWN |
| ubuntu | 10.04 | noarch | xulrunner-1.9.2 | <ย 1.9.2.20+build1+nobinonly-0ubuntu0.10.04.1 | UNKNOWN |
| ubuntu | 10.10 | noarch | xulrunner-1.9.2 | <ย 1.9.2.20+build1+nobinonly-0ubuntu0.10.10.1 | UNKNOWN |
Related
prion
prion
Design/Logic Flaw
2011-08-18 18:55:00
saint
saint
Firefox sensor.dll Insecure Library Loading
2011-09-13 00:00:00
Firefox sensor.dll Insecure Library Loading
2011-09-13 00:00:00
Firefox sensor.dll Insecure Library Loading
2011-09-13 00:00:00
checkpoint_advisories
checkpoint_advisories
cve
cve
CVE-2011-2980
2011-08-18 18:55:00
openvas
openvas
Mozilla Firefox Untrusted Search Path Vulnerability (Windows)
2011-09-09 00:00:00
Mozilla Firefox Untrusted Search Path Vulnerability - Windows
2011-09-09 00:00:00
Mandriva Update for mozilla MDVSA-2011:127 (mozilla)
2011-08-19 00:00:00
securityvulns
securityvulns
ASPR #2011-08-18-2: Remote Binary Planting in Mozilla Thunderbird
2011-08-19 00:00:00
ASPR #2011-08-18-1: Remote Binary Planting in Mozilla Firefox
2011-08-19 00:00:00
Mozilla Fireox / Seamonkey / Thunderbird multiple security vulnerabilities
2011-08-19 00:00:00
nessus
nessus
SuSE 11.1 Security Update : Mozilla Firefox (SAT Patch Number 5057)
2011-08-30 00:00:00
Mozilla Thunderbird 3.1 < 3.1.12 Multiple Vulnerabilities
2011-08-18 00:00:00
openSUSE Security Update : MozillaThunderbird (MozillaThunderbird-5050)
2014-06-13 00:00:00
suse
suse
MozillaFirefox: Update to Firefox 3.6.20 (important)
2011-08-26 20:08:19
Security update for Mozilla Firefox (important)
2011-08-29 21:08:22
MozillaThunderbird: Update to 3.1.12 (important)
2011-08-29 20:08:38
mozilla
mozilla
Security issues addressed in Firefox 3.6.20 โ Mozilla
2011-08-16 00:00:00
Security issues addressed in Thunderbird 3.1.12 โ Mozilla
2011-08-16 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2011-08-16 00:00:00
seebug
seebug
Mozilla Firefox/Thunderbird/SeaMonkeyๅคไธชๅฎๅ
จๆผๆด
2011-08-18 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.018 Low
EPSS
Percentile
88.0%
Related for UB:CVE-2011-2980