CVE-2017-7804

MEDIUM

Description

The destructor function for the "WindowsDllDetourPatcher" class can be re-purposed by malicious code in concert with another vulnerability to write arbitrary data to an attacker controlled location in memory. This can be used to bypass existing memory protections in this situation. Note: This attack only affects Windows operating systems. Other operating systems are not affected. This vulnerability affects Thunderbird < 52.3, Firefox ESR < 52.3, and Firefox < 55.

References

http://www.securityfocus.com/bid/100234

http://www.securitytracker.com/id/1039124

https://bugzilla.mozilla.org/show_bug.cgi?id=1372849

https://www.mozilla.org/security/advisories/mfsa2017-18/

https://www.mozilla.org/security/advisories/mfsa2017-19/

https://www.mozilla.org/security/advisories/mfsa2017-20/

Details

Source: MITRE

Published: 2018-06-11

Updated: 2018-08-06

Type: CWE-20

Risk Information

CVSS v2.0

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

CVSS v3.0

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Impact Score: 3.6

Exploitability Score: 3.9

Severity: HIGH

Vulnerable Software

Configuration 1

AND

OR

cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*

OR

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Tenable Plugins

View all (10 total)

IDNameProductFamilySeverity
103563SUSE SLED12 / SLES12 Security Update : MozillaFirefox (SUSE-SU-2017:2589-1)NessusSuSE Local Security Checks
critical
102961Debian DLA-1087-2 : icedove/thunderbird regression updateNessusDebian Local Security Checks
critical
102856SUSE SLES11 Security Update : MozillaFirefox (SUSE-SU-2017:2302-1)NessusSuSE Local Security Checks
critical
700183Mozilla Firefox ESR < 52.3 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
700182Mozilla Firefox < 55 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
102622openSUSE Security Update : MozillaThunderbird (openSUSE-2017-955)NessusSuSE Local Security Checks
critical
102472openSUSE Security Update : MozillaFirefox (openSUSE-2017-921)NessusSuSE Local Security Checks
critical
102359Mozilla Firefox < 55 Multiple VulnerabilitiesNessusWindows
critical
102358Mozilla Firefox ESR < 52.3 Multiple VulnerabilitiesNessusWindows
critical
102278FreeBSD : mozilla -- multiple vulnerabilities (555b244e-6b20-4546-851f-d8eb7d6c1ffa)NessusFreeBSD Local Security Checks
critical