CVE-2018-18506

MEDIUM

Description

When proxy auto-detection is enabled, if a web server serves a Proxy Auto-Configuration (PAC) file or if a PAC file is loaded locally, this PAC file can specify that requests to the localhost are to be sent through the proxy to another server. This behavior is disallowed by default when a proxy is manually configured, but when enabled could allow for attacks on services and tools that bind to the localhost for networked behavior if they are accessed through browsing. This vulnerability affects Firefox < 65.

References

http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00035.html

http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00043.html

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00023.html

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html

http://www.securityfocus.com/bid/106773

https://access.redhat.com/errata/RHSA-2019:0622

https://access.redhat.com/errata/RHSA-2019:0623

https://access.redhat.com/errata/RHSA-2019:0680

https://access.redhat.com/errata/RHSA-2019:0681

https://access.redhat.com/errata/RHSA-2019:0966

https://access.redhat.com/errata/RHSA-2019:1144

https://lists.debian.org/debian-lts-announce/2019/03/msg00024.html

https://lists.debian.org/debian-lts-announce/2019/04/msg00000.html

https://seclists.org/bugtraq/2019/Apr/0

https://seclists.org/bugtraq/2019/Mar/28

https://security.gentoo.org/glsa/201904-07

https://usn.ubuntu.com/3874-1/

https://usn.ubuntu.com/3927-1/

https://www.debian.org/security/2019/dsa-4411

https://www.debian.org/security/2019/dsa-4420

https://www.mozilla.org/security/advisories/mfsa2019-01/

Details

Source: MITRE

Published: 2019-02-05

Updated: 2020-08-24

Risk Information

CVSS v2.0

Base Score: 4.3

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Impact Score: 2.9

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3.0

Base Score: 5.9

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Impact Score: 3.6

Exploitability Score: 2.2

Severity: MEDIUM

Tenable Plugins

View all (49 total)

IDNameProductFamilySeverity
145595CentOS 8 : firefox (CESA-2019:0966)NessusCentOS Local Security Checks
high
127579Oracle Linux 8 : thunderbird (ELSA-2019-1144)NessusOracle Linux Local Security Checks
high
127459NewStart CGSL MAIN 4.05 : thunderbird Multiple Vulnerabilities (NS-SA-2019-0169)NessusNewStart CGSL Local Security Checks
high
127427NewStart CGSL MAIN 4.05 : firefox Multiple Vulnerabilities (NS-SA-2019-0153)NessusNewStart CGSL Local Security Checks
high
127319NewStart CGSL MAIN 4.06 : thunderbird Multiple Vulnerabilities (NS-SA-2019-0095)NessusNewStart CGSL Local Security Checks
high
127308NewStart CGSL MAIN 4.06 : firefox Multiple Vulnerabilities (NS-SA-2019-0090)NessusNewStart CGSL Local Security Checks
high
127260NewStart CGSL CORE 5.04 / MAIN 5.04 : firefox Multiple Vulnerabilities (NS-SA-2019-0064)NessusNewStart CGSL Local Security Checks
high
127257NewStart CGSL CORE 5.04 / MAIN 5.04 : thunderbird Multiple Vulnerabilities (NS-SA-2019-0062)NessusNewStart CGSL Local Security Checks
high
125498EulerOS 2.0 SP3 : firefox (EulerOS-SA-2019-1571)NessusHuawei Local Security Checks
high
124845RHEL 8 : thunderbird (RHSA-2019:1144)NessusRed Hat Local Security Checks
high
124662RHEL 8 : firefox (RHSA-2019:0966)NessusRed Hat Local Security Checks
high
124378EulerOS 2.0 SP2 : firefox (EulerOS-SA-2019-1282)NessusHuawei Local Security Checks
high
124301Amazon Linux 2 : thunderbird (ALAS-2019-1195)NessusAmazon Linux Local Security Checks
high
123817openSUSE Security Update : MozillaThunderbird (openSUSE-2019-1162)NessusSuSE Local Security Checks
high
123781SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2019:0871-1)NessusSuSE Local Security Checks
high
123747SUSE SLED12 / SLES12 Security Update : MozillaFirefox (SUSE-SU-2019:0852-1)NessusSuSE Local Security Checks
high
123581GLSA-201904-07 : Mozilla Thunderbird and Firefox: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
123563Debian DLA-1743-1 : thunderbird security updateNessusDebian Local Security Checks
high
123562CentOS 7 : thunderbird (CESA-2019:0681)NessusCentOS Local Security Checks
high
123561CentOS 6 : thunderbird (CESA-2019:0680)NessusCentOS Local Security Checks
high
123541openSUSE Security Update : MozillaFirefox (openSUSE-2019-1077)NessusSuSE Local Security Checks
high
123532Debian DSA-4420-1 : thunderbird - security updateNessusDebian Local Security Checks
high
123507Mozilla Thunderbird < 60.6NessusWindows
high
123506Mozilla Thunderbird < 60.6NessusMacOS X Local Security Checks
high
123505Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 18.10 : Thunderbird vulnerabilities (USN-3927-1)NessusUbuntu Local Security Checks
high
123491Scientific Linux Security Update : thunderbird on SL7.x x86_64 (20190328)NessusScientific Linux Local Security Checks
high
123490Scientific Linux Security Update : thunderbird on SL6.x i386/x86_64 (20190328)NessusScientific Linux Local Security Checks
high
123488RHEL 7 : thunderbird (RHSA-2019:0681)NessusRed Hat Local Security Checks
high
123487RHEL 6 : thunderbird (RHSA-2019:0680)NessusRed Hat Local Security Checks
high
123485Oracle Linux 7 : thunderbird (ELSA-2019-0681)NessusOracle Linux Local Security Checks
high
123484Oracle Linux 6 : thunderbird (ELSA-2019-0680)NessusOracle Linux Local Security Checks
high
123438openSUSE Security Update : MozillaFirefox (openSUSE-2019-1056)NessusSuSE Local Security Checks
high
123057Scientific Linux Security Update : firefox on SL6.x i386/x86_64 (20190320)NessusScientific Linux Local Security Checks
high
123021Debian DSA-4411-1 : firefox-esr - security updateNessusDebian Local Security Checks
high
123016Debian DLA-1722-1 : firefox-esr security updateNessusDebian Local Security Checks
high
123015CentOS 6 : firefox (CESA-2019:0623)NessusCentOS Local Security Checks
high
123014CentOS 7 : firefox (CESA-2019:0622)NessusCentOS Local Security Checks
high
122995Scientific Linux Security Update : firefox on SL7.x x86_64 (20190320)NessusScientific Linux Local Security Checks
high
122994RHEL 6 : firefox (RHSA-2019:0623)NessusRed Hat Local Security Checks
high
122993RHEL 7 : firefox (RHSA-2019:0622)NessusRed Hat Local Security Checks
high
122992Oracle Linux 6 : firefox (ELSA-2019-0623)NessusOracle Linux Local Security Checks
high
122991Oracle Linux 7 : firefox (ELSA-2019-0622)NessusOracle Linux Local Security Checks
high
122950Mozilla Firefox ESR < 60.6NessusWindows
high
122949Mozilla Firefox ESR < 60.6NessusMacOS X Local Security Checks
high
700399Mozilla Firefox < 65.0 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
critical
121512Mozilla Firefox < 65.0NessusWindows
critical
121511Mozilla Firefox < 65.0NessusMacOS X Local Security Checks
critical
121507Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 18.10 : Firefox vulnerabilities (USN-3874-1)NessusUbuntu Local Security Checks
critical
121447FreeBSD : mozilla -- multiple vulnerabilities (b1f7d52f-fc42-48e8-8403-87d4c9d26229)NessusFreeBSD Local Security Checks
critical