BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
[CVE-2014-1520] NOT FIXED: privilege escalation via Mozilla's executable installers Jun 14 2016 10:37PM
Stefan Kanthak (stefan kanthak nexgo de)
Hi @ll,

<https://bugzilla.mozilla.org/show_bug.cgi?id=961676> should
have fixed CVE-2014-1520 in Mozilla's executable installers for
Windows ... but does NOT!

JFTR: this type of vulnerability (really: a bloody stupid trivial
beginner's error!) is well-known and well-documented as
<http...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus