CVE-2012-1942 — Mozilla Firefox vulnerability

CWE-2643 documents3 sources

Severity

7.2HIGHNVD

EPSS

0.0%

top 86.30%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox Mozilla Seamonkey Mozilla Thunderbird

Timeline

PublishedJun 5

Latest updateMay 14

Description

The Mozilla Updater and Windows Updater Service in Mozilla Firefox 12.0, Thunderbird 12.0, and SeaMonkey 2.9 on Windows allow local users to gain privileges by loading a DLL file in a privileged context.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages3 packages

▶NVDmozilla/firefox12.0

▶NVDmozilla/seamonkey2.9

▶NVDmozilla/thunderbird12.0

🔴Vulnerability Details

GHSA

GHSA-vvhf-jjrh-q898: The Mozilla Updater and Windows Updater Service in Mozilla Firefox 12↗2022-05-14

▶

CVEList

CVE-2012-1942: The Mozilla Updater and Windows Updater Service in Mozilla Firefox 12↗2012-06-05

▶