Debian Firefox-Esr vulnerabilities

CVE-2017-5389 [MEDIUM] CVE-2017-5389: firefox - WebExtensions could use the "mozAddonManager" API by modifying the CSP headers o... WebExtensions could use the "mozAddonManager" API by modifying the CSP headers on sites with the appropriate permissions and then using host requests to redirect script loads to a malicious site. This allows a malicious extension to then install additional extensions without explicit user permission. This vulnerability affects Firefox < 51. Scope: local sid: resolve

CVE-2017-5462 [MEDIUM] CVE-2017-5462: firefox - A flaw in DRBG number generation within the Network Security Services (NSS) libr... A flaw in DRBG number generation within the Network Security Services (NSS) library where the internal state V does not correctly carry bits over. The NSS library has been updated to fix this issue to address this issue and Firefox ESR 52.1 has been updated with NSS version 3.28.4. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1

CVE-2017-5383 [MEDIUM] CVE-2017-5383: firefox - URLs containing certain unicode glyphs for alternative hyphens and quotes do not... URLs containing certain unicode glyphs for alternative hyphens and quotes do not properly trigger punycode display, allowing for domain name spoofing attacks in the location bar. This vulnerability affects Thunderbird < 45.7, Firefox ESR < 45.7, and Firefox < 51. Scope: local sid: resolved (fixed in 51.0-1)

CVE-2017-5384 [MEDIUM] CVE-2017-5384: firefox - Proxy Auto-Config (PAC) files can specify a JavaScript function called for all U... Proxy Auto-Config (PAC) files can specify a JavaScript function called for all URL requests with the full URL path which exposes more information than would be sent to the proxy itself in the case of HTTPS. Normally the Proxy Auto-Config file is specified by the user or machine owner and presumed to be non-malicious, but if a user has enabled Web Proxy Auto Detect (

CVE-2017-5408 [MEDIUM] CVE-2017-5408: firefox - Video files loaded video captions cross-origin without checking for the presence... Video files loaded video captions cross-origin without checking for the presence of CORS headers permitting such cross-origin use, leading to potential information disclosure for video captions. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8. Scope: local sid: resolved (fixed in 52.0-1)

CVE-2017-5405 [MEDIUM] CVE-2017-5405: firefox - Certain response codes in FTP connections can result in the use of uninitialized... Certain response codes in FTP connections can result in the use of uninitialized values for ports in FTP operations. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8. Scope: local sid: resolved (fixed in 52.0-1)

CVE-2017-7823 [MEDIUM] CVE-2017-7823: firefox - The content security policy (CSP) "sandbox" directive did not create a unique or... The content security policy (CSP) "sandbox" directive did not create a unique origin for the document, causing it to behave as if the "allow-same-origin" keyword were always specified. This could allow a Cross-Site Scripting (XSS) attack to be launched from unsafe content. This vulnerability affects Firefox < 56, Firefox ESR < 52.4, and Thunderbird < 52.4. Scope: lo

CVE-2017-5407 [MEDIUM] CVE-2017-5407: firefox - Using SVG filters that don't use the fixed point math implementation on a target... Using SVG filters that don't use the fixed point math implementation on a target iframe, a malicious page can extract pixel values from a targeted user. This can be used to extract history information and read text values across domains. This violates same-origin policy and leads to information disclosure. This vulnerability affects Firefox < 52, Firefox ESR < 45.8,

CVE-2017-7825 [MEDIUM] CVE-2017-7825: firefox - Several fonts on OS X display some Tibetan and Arabic characters as whitespace. ... Several fonts on OS X display some Tibetan and Arabic characters as whitespace. When used in the addressbar as part of an IDN this can be used for domain name spoofing attacks. Note: This attack only affects OS X operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 56, Firefox ESR < 52.4, and Thunderbird < 52.4. Scope: loca

CVE-2017-5409 [MEDIUM] CVE-2017-5409: firefox - The Mozilla Windows updater can be called by a non-privileged user to delete an ... The Mozilla Windows updater can be called by a non-privileged user to delete an arbitrary local file by passing a special path to the callback parameter through the Mozilla Maintenance Service, which has privileged access. Note: This attack requires local system access and only affects Windows. Other operating systems are not affected. This vulnerability affects Fir

CVE-2017-7782 [MEDIUM] CVE-2017-7782: firefox - An error in the "WindowsDllDetourPatcher" where a RWX ("Read/Write/Execute") 4k ... An error in the "WindowsDllDetourPatcher" where a RWX ("Read/Write/Execute") 4k block is allocated but never protected, violating DEP protections. Note: This attack only affects Windows operating systems. Other operating systems are not affected. This vulnerability affects Thunderbird < 52.3, Firefox ESR < 52.3, and Firefox < 55. Scope: local sid: resolved

CVE-2017-5387 [LOW] CVE-2017-5387: firefox - The existence of a specifically requested local file can be found due to the dou... The existence of a specifically requested local file can be found due to the double firing of the "onerror" when the "source" attribute on a "" tag refers to a file that does not exist if the source page is loaded locally. This vulnerability affects Firefox < 51. Scope: local sid: resolved (fixed in 51.0-1)

CVE-2017-7765 [HIGH] CVE-2017-7765: firefox - The "Mark of the Web" was not correctly saved on Windows when files with very lo... The "Mark of the Web" was not correctly saved on Windows when files with very long names were downloaded from the Internet. Without the Mark of the Web data, the security warning that Windows displays before running executables downloaded from the Internet is not shown. Note: This attack only affects Windows operating systems. Other operating systems are unaffected. T

CVE-2017-7804 [HIGH] CVE-2017-7804: firefox - The destructor function for the "WindowsDllDetourPatcher" class can be re-purpos... The destructor function for the "WindowsDllDetourPatcher" class can be re-purposed by malicious code in concert with another vulnerability to write arbitrary data to an attacker controlled location in memory. This can be used to bypass existing memory protections in this situation. Note: This attack only affects Windows operating systems. Other operating systems are n

CVE-2017-7760 [HIGH] CVE-2017-7760: firefox - The Mozilla Windows updater modifies some files to be updated by reading the ori... The Mozilla Windows updater modifies some files to be updated by reading the original file and applying changes to it. The location of the original file can be altered by a malicious user by passing a special path to the callback parameter through the Mozilla Maintenance Service, allowing the manipulation of files in the installation directory and privilege escalation

CVE-2017-7768 [MEDIUM] CVE-2017-7768: firefox - The Mozilla Maintenance Service can be invoked by an unprivileged user to read 3... The Mozilla Maintenance Service can be invoked by an unprivileged user to read 32 bytes of any arbitrary file on the local system by convincing the service that it is reading a status file provided by the Mozilla Windows Updater. The Mozilla Maintenance Service executes with privileged access, bypassing system protections against unprivileged users. Note: This attac

CVE-2017-7767 [MEDIUM] CVE-2017-7767: firefox - The Mozilla Maintenance Service can be invoked by an unprivileged user to overwr... The Mozilla Maintenance Service can be invoked by an unprivileged user to overwrite arbitrary files with junk data using the Mozilla Windows Updater, which runs with the Maintenance Service's privileged access. Note: This attack requires local system access and only affects Windows. Other operating systems are not affected. This vulnerability affects Firefox ESR < 5

CVE-2017-7763 [MEDIUM] CVE-2017-7763: firefox - Default fonts on OS X display some Tibetan characters as whitespace. When used i... Default fonts on OS X display some Tibetan characters as whitespace. When used in the addressbar as part of an IDN this can be used for domain name spoofing attacks. Note: This attack only affects OS X operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2. Scope: local sid: reso

CVE-2017-7755 [HIGH] CVE-2017-7755: firefox - The Firefox installer on Windows can be made to load malicious DLL files stored ... The Firefox installer on Windows can be made to load malicious DLL files stored in the same directory as the installer when it is run. This allows privileged execution if the installer is run with elevated privileges. Note: This attack only affects Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 54, Firefox ESR <

CVE-2017-7766 [HIGH] CVE-2017-7766: firefox - An attack using manipulation of "updater.ini" contents, used by the Mozilla Wind... An attack using manipulation of "updater.ini" contents, used by the Mozilla Windows Updater, and privilege escalation through the Mozilla Maintenance Service to allow for arbitrary file execution and deletion by the Maintenance Service, which has privileged access. Note: This attack requires local system access and only affects Windows. Other operating systems are not