The Mozilla Updater and Windows Updater Service in Mozilla Firefox 12.0, Thunderbird 12.0, and SeaMonkey 2.9 on Windows allow local users to gain privileges by loading a DLL file in a privileged context.
http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00012.html
http://www.mozilla.org/security/announce/2012/mfsa2012-35.html
http://www.mozilla.org/security/announce/2013/mfsa2013-45.html
https://bugzilla.mozilla.org/show_bug.cgi?id=748764
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16951
AND
OR
cpe:2.3:a:mozilla:firefox:12.0:*:*:*:*:*:*:*
OR
ID | Name | Product | Family | Severity |
---|---|---|---|---|
68949 | SuSE 11.3 Security Update : Mozilla Firefox (SAT Patch Number 8001) | Nessus | SuSE Local Security Checks | critical |
66480 | Firefox < 21.0 Multiple Vulnerabilities | Nessus | Windows | critical |
66476 | Firefox < 21.0 Multiple Vulnerabilities (Mac OS X) | Nessus | MacOS X Local Security Checks | critical |
66455 | FreeBSD : mozilla -- multiple vulnerabilities (4a1ca8a4-bd82-11e2-b7a0-d43d7e0c7c02) | Nessus | FreeBSD Local Security Checks | critical |
64208 | SuSE 11.1 Security Update : Mozilla Firefox (SAT Patch Number 6425) | Nessus | SuSE Local Security Checks | critical |
59520 | SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 8189) | Nessus | SuSE Local Security Checks | critical |
801375 | Mozilla SeaMonkey 2.x < 2.10 Multiple Vulnerabilities | Log Correlation Engine | Web Clients | high |
6496 | SeaMonkey 2.x < 2.10 Multiple Vulnerabilities | Nessus Network Monitor | Web Clients | high |
801297 | Mozilla Firefox 12.x < 12 Multiple Vulnerabilities | Log Correlation Engine | Web Clients | high |
801240 | Mozilla Thunderbird 12.x < 12 Multiple Vulnerabilities | Log Correlation Engine | SMTP Clients | high |
6498 | Mozilla Thunderbird < 13.0 Multiple Vulnerabilities | Nessus Network Monitor | SMTP Clients | high |
6497 | Mozilla Firefox < 13.0 Multiple Vulnerabilities | Nessus Network Monitor | Web Clients | high |
59411 | SeaMonkey < 2.10.0 Multiple Vulnerabilities | Nessus | Windows | high |
59409 | Mozilla Thunderbird < 13.0 Multiple Vulnerabilities | Nessus | Windows | high |
59407 | Firefox < 13.0 Multiple Vulnerabilities | Nessus | Windows | high |