Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 might allow local users to gain privileges by modifying the extracted Mar contents during an update.
References
Link | Resource |
---|---|
http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00016.html | Mailing List Third Party Advisory |
http://www.mozilla.org/security/announce/2014/mfsa2014-16.html | Vendor Advisory |
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html | Third Party Advisory |
https://bugzilla.mozilla.org/show_bug.cgi?id=925747 | Exploit Issue Tracking Vendor Advisory |
https://security.gentoo.org/glsa/201504-01 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mozilla
Published: 2014-03-19T10:00:00
Updated: 2016-12-20T16:57:01
Reserved: 2014-01-16T00:00:00
Link: CVE-2014-1496
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-03-19T10:55:06.303
Modified: 2020-08-05T13:51:42.387
Link: CVE-2014-1496
JSON object: View
Redhat Information
No data.
CWE