CVE-2013-1712

Multiple untrusted search path vulnerabilities in updater.exe in Mozilla Updater in Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, and Thunderbird ESR 17.x before 17.0.8 on Windows 7, Windows Server 2008 R2, Windows 8, and Windows Server 2012 allow local users to gain privileges via a Trojan horse DLL in (1) the update directory or (2) the current working directory.

CVSS v2.0 6.9 MEDIUM

6.9^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 3.4 / Impact : 10.0

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.mozilla.org/security/announce/2013/mfsa2013-71.html	Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=859072
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18014

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:mozilla:firefox::::::::
	cpe:2.3:a:mozilla:firefox:19.0:::::::*
	cpe:2.3:a:mozilla:firefox:19.0.1:::::::*
	cpe:2.3:a:mozilla:firefox:19.0.2:::::::*
	cpe:2.3:a:mozilla:firefox:20.0:::::::*
	cpe:2.3:a:mozilla:firefox:20.0.1:::::::*
	cpe:2.3:a:mozilla:firefox:21.0:::::::*
	cpe:2.3:a:mozilla:firefox_esr:17.0:::::::*
	cpe:2.3:a:mozilla:firefox_esr:17.0.1:::::::*
	cpe:2.3:a:mozilla:firefox_esr:17.0.2:::::::*
	cpe:2.3:a:mozilla:firefox_esr:17.0.3:::::::*
	cpe:2.3:a:mozilla:firefox_esr:17.0.4:::::::*
	cpe:2.3:a:mozilla:firefox_esr:17.0.5:::::::*
	cpe:2.3:a:mozilla:firefox_esr:17.0.6:::::::*
	cpe:2.3:a:mozilla:firefox_esr:17.0.7:::::::*
	cpe:2.3:a:mozilla:thunderbird::::::::
	cpe:2.3:a:mozilla:thunderbird:17.0:::::::*
	cpe:2.3:a:mozilla:thunderbird:17.0.1:::::::*
	cpe:2.3:a:mozilla:thunderbird:17.0.2:::::::*
	cpe:2.3:a:mozilla:thunderbird:17.0.3:::::::*
	cpe:2.3:a:mozilla:thunderbird:17.0.4:::::::*
	cpe:2.3:a:mozilla:thunderbird:17.0.5:::::::*
	cpe:2.3:a:mozilla:thunderbird:17.0.6:::::::*
	cpe:2.3:a:mozilla:thunderbird_esr:17.0:::::::*
	cpe:2.3:a:mozilla:thunderbird_esr:17.0.1:::::::*
	cpe:2.3:a:mozilla:thunderbird_esr:17.0.2:::::::*
	cpe:2.3:a:mozilla:thunderbird_esr:17.0.3:::::::*
	cpe:2.3:a:mozilla:thunderbird_esr:17.0.4:::::::*
	cpe:2.3:a:mozilla:thunderbird_esr:17.0.5:::::::*
	cpe:2.3:a:mozilla:thunderbird_esr:17.0.6:::::::*
	cpe:2.3:a:mozilla:thunderbird_esr:17.0.7:::::::*

OR	cpe:2.3:o:microsoft:windows_7::::::::
	cpe:2.3:o:microsoft:windows_8:-:-:x64:::::*
	cpe:2.3:o:microsoft:windows_8:-:-:x86:::::*
	cpe:2.3:o:microsoft:windows_server_2008:r2:::::::*
	cpe:2.3:o:microsoft:windows_server_2012:-:::::::*

History

No history.

Information

Published : 2013-08-07 01:55

Updated : 2017-09-19 01:36

NVD link : CVE-2013-1712

Mitre link : CVE-2013-1712

CVE.ORG link : CVE-2013-1712

JSON object : View

Products Affected

microsoft

windows_server_2012
windows_7
windows_8
windows_server_2008

mozilla

firefox
firefox_esr
thunderbird
thunderbird_esr

CWE

NVD-CWE-Other

{"id": "CVE-2013-1712", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.9, "accessVector": "LOCAL", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.4, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-08-07T01:55:04.917", "references": [{"url": "http://www.mozilla.org/security/announce/2013/mfsa2013-71.html", "tags": ["Vendor Advisory"], "source": "security@mozilla.org"}, {"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=859072", "source": "security@mozilla.org"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18014", "source": "security@mozilla.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Multiple untrusted search path vulnerabilities in updater.exe in Mozilla Updater in Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, and Thunderbird ESR 17.x before 17.0.8 on Windows 7, Windows Server 2008 R2, Windows 8, and Windows Server 2012 allow local users to gain privileges via a Trojan horse DLL in (1) the update directory or (2) the current working directory."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de path de b\u00fasqueda inseguro en updater.exe en Mozilla Firefox anterior a v23.0, Firefox ESR v17.x anterior a v 17.0.8, Thunderbird anterior a v 17.0.8, Thunderbird ESR v17.x anterior a v 17.0.8 en Windows 7, Windows Server 2008 R2, Windows 8, y Windows Server 2012 permiten a los usuarios locales conseguir privilegios a trav\u00e9s de una DLL caballo de Troya en (1) el directorio de actualizaci\u00f3n o (2) el directorio de trabajo actual."}], "lastModified": "2017-09-19T01:36:12.420", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "47AF449C-4766-4BBB-928A-F6437F083835", "versionEndIncluding": "22.0"}, {"criteria": "cpe:2.3:a:mozilla:firefox:19.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "06FF9DFE-491D-4260-8A49-07FD342B9412"}, {"criteria": "cpe:2.3:a:mozilla:firefox:19.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DE09D089-7F48-466B-B03A-C64152A12615"}, {"criteria": "cpe:2.3:a:mozilla:firefox:19.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "653D73DA-21C0-4C3F-9269-5A6D5C5B1E34"}, {"criteria": "cpe:2.3:a:mozilla:firefox:20.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "804A0ACE-EB28-413D-93F4-E849FEA01390"}, {"criteria": "cpe:2.3:a:mozilla:firefox:20.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3BA49C6F-9115-41A5-BBDE-743CB9DEDDA8"}, {"criteria": "cpe:2.3:a:mozilla:firefox:21.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7CC8D9A8-D4DB-4BC9-89CE-F3AF742C399F"}, {"criteria": "cpe:2.3:a:mozilla:firefox_esr:17.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D9BBC7F8-D102-403F-8A88-AF279536E2F0"}, {"criteria": "cpe:2.3:a:mozilla:firefox_esr:17.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DFDAC701-5E69-4633-8CE4-04B8AFCC10C2"}, {"criteria": "cpe:2.3:a:mozilla:firefox_esr:17.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "83D5CFC4-C5DD-4747-985A-BC7A8E7C6EF7"}, {"criteria": "cpe:2.3:a:mozilla:firefox_esr:17.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D5AFA78C-71F3-4E64-8A8F-5BA028F04037"}, {"criteria": "cpe:2.3:a:mozilla:firefox_esr:17.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F99963C6-175B-4099-86F4-BADCA43DB41F"}, {"criteria": "cpe:2.3:a:mozilla:firefox_esr:17.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "96530DB0-8A9E-48FD-A5C5-28FD467568B2"}, {"criteria": "cpe:2.3:a:mozilla:firefox_esr:17.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9B0AC5E6-F4E3-41A9-A611-A0FAF11ABF68"}, {"criteria": "cpe:2.3:a:mozilla:firefox_esr:17.0.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "832D5058-86F2-4FAA-A06D-AE1ED3A4C3B5"}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "56C0A9C0-65CF-4ABC-836F-AC52ED5C93A8", "versionEndIncluding": "17.0.7"}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:17.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C2FD78A8-0D3A-412C-8776-20C598697564"}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:17.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "777D8DC5-8D43-4842-B0A7-3C933F41F6E8"}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:17.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "808C66D2-4C53-4544-AD21-443D9A400B84"}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:17.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FB95E8B-CF01-471F-8306-BB9FB0896904"}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:17.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF7E092E-BCBE-48B4-8F6A-D3E4A0369AE1"}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:17.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB1D90B0-9E81-4828-8122-A66FB0953863"}, {"criteria": "cpe:2.3:a:mozilla:thunderbird:17.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7F3920CE-A546-4E95-9E00-46DE4C732F73"}, {"criteria": "cpe:2.3:a:mozilla:thunderbird_esr:17.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "341D94CE-C0EB-47FA-A043-E7B0F4344BBB"}, {"criteria": "cpe:2.3:a:mozilla:thunderbird_esr:17.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "84C3EE07-F201-451A-89A1-A41B8B2165E6"}, {"criteria": "cpe:2.3:a:mozilla:thunderbird_esr:17.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "45837B42-7D29-4475-94F1-E29CD5831C7F"}, {"criteria": "cpe:2.3:a:mozilla:thunderbird_esr:17.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7028A433-7D1B-4C6F-A0F6-1B69682F7853"}, {"criteria": "cpe:2.3:a:mozilla:thunderbird_esr:17.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "86C07513-8F98-4FA6-837D-7D735AE5EA91"}, {"criteria": "cpe:2.3:a:mozilla:thunderbird_esr:17.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1D87C70-0EC2-49DE-A59D-CAF22760BC9D"}, {"criteria": "cpe:2.3:a:mozilla:thunderbird_esr:17.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "61AE2EAA-55A4-4FC9-BC3F-0FEE5BB2DE99"}, {"criteria": "cpe:2.3:a:mozilla:thunderbird_esr:17.0.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCC56C1D-6F46-4B08-B085-E9E0D41DB8CA"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D56B932B-9593-44E2-B610-E4EB2143EB21"}, {"criteria": "cpe:2.3:o:microsoft:windows_8:-:-:x64:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DE8E7D74-0DCB-4633-B502-EDC2112229BA"}, {"criteria": "cpe:2.3:o:microsoft:windows_8:-:-:x86:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9DAA2E6F-A666-4136-8F6B-E35C313CAB2B"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "36559BC0-44D7-48B3-86FF-1BFF0257B5ED"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074"}], "operator": "OR"}], "operator": "AND"}], "evaluatorComment": "Per: http://cwe.mitre.org/data/definitions/426.html\n\nCWE-426: Untrusted Search Path", "sourceIdentifier": "security@mozilla.org"}

6.9 /10