Description
Race condition in the Mozilla Maintenance Service in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 on Windows allows local users to write to arbitrary files and consequently gain privileges via vectors involving a hard link to a log file during an update.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Google Security Research · textlocalwindows
https://www.exploit-db.com/exploits/37925
References (11)
Core 11
Core References
Issue Tracking x_refsource_confirm
https://bugzilla.mozilla.org/show_bug.cgi?id=1171518
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2015-08/msg00031.html
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00014.html
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2015-08/msg00030.html
Vendor Advisory x_refsource_confirm
http://www.mozilla.org/security/announce/2015/mfsa2015-84.html
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/37925/
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1033247
Third Party Advisory vendor-advisory
x_refsource_gentoo
https://security.gentoo.org/glsa/201605-06
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1033372
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00015.html
Scores
EPSS
0.0016
EPSS Percentile
36.9%
Details
CWE
CWE-362
Status
published
Products (8)
mozilla/firefox
38.0
mozilla/firefox
38.0.1
mozilla/firefox
38.0.5
mozilla/firefox
38.1.0
mozilla/firefox
< 39.0.3
opensuse/opensuse
13.1
opensuse/opensuse
13.2
oracle/solaris
11.3
Published
Aug 16, 2015
Tracked Since
Feb 18, 2026