CVE-2013-0797

Mozilla Updater <20.0 - Privilege Escalation

Title source: llm
STIX 2.1

Description

Untrusted search path vulnerability in the Mozilla Updater in Mozilla Firefox before 20.0, Firefox ESR 17.x before 17.0.5, Thunderbird before 17.0.5, Thunderbird ESR 17.x before 17.0.5, and SeaMonkey before 2.17 allows local users to gain privileges via a Trojan horse DLL file in an unspecified directory.

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17146
Issue Tracking x_refsource_confirm
https://bugzilla.mozilla.org/show_bug.cgi?id=830134

Scores

EPSS 0.0041
EPSS Percentile 32.9%

Details

Status published
Products (29)
mozilla/firefox 19.0
mozilla/firefox 19.0.1
mozilla/firefox 17.0
mozilla/firefox 17.0.1
mozilla/firefox 17.0.2
mozilla/firefox 17.0.3
mozilla/firefox 17.0.4
mozilla/firefox < 19.0.2
mozilla/seamonkey 2.0 (8 CPE variants)
mozilla/seamonkey 2.0.1
... and 19 more
Published Apr 03, 2013
Tracked Since Feb 18, 2026