Test Kennung:	1.3.6.1.4.1.25623.1.0.802509
Kategorie:	Privilege escalation
Titel:	Mozilla Products 'NoWaiverWrapper' Privilege Escalation Vulnerability - Windows
Zusammenfassung:	Mozilla Firefox/Thunderbird is prone to a privilege escalation vulnerability.
Beschreibung:	Summary: Mozilla Firefox/Thunderbird is prone to a privilege escalation vulnerability. Vulnerability Insight: The flaw is due to: performing access control without checking for use of the NoWaiverWrapper wrapper, which allows remote attackers to gain privileges via a crafted web site. Vulnerability Impact: Successful exploitation will let attackers to gain privileges via a crafted web site. Affected Software/OS: Thunderbird version 5.0 through 7.0 Mozilla Firefox version 4.x through 7.0 Solution: Upgrade to Mozilla Firefox version 8.0 or later, Upgrade to Thunderbird version to 8.0 or later. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2011-3655 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14202 http://secunia.com/advisories/49055 SuSE Security Announcement: SUSE-SU-2011:1256 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00020.html
Copyright	Copyright (C) 2011 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.