CVE-2012-1943
Description
Untrusted search path vulnerability in Updater.exe in the Windows Updater Service in Mozilla Firefox 12.0, Thunderbird 12.0, and SeaMonkey 2.9 on Windows allows local users to gain privileges via a Trojan horse wsock32.dll file in an application directory.
Risk Information
Base Score
7.3
MODERATE
Vector
AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.053
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple vulnerabilities affected in Mozilla Firefox (x64) 12.0 | Windows |
| Multiple vulnerabilities affected in Mozilla Thunderbird 12.0 | Windows |
| Multiple vulnerabilities affected in Mozilla_Firefox 12.0 | Windows |
| Multiple vulnerabilities affected in SeaMonkey 2.9 | Windows |
| Multiple Vulnerabilities are affected in Mozilla Thunderbird 12.0 | Windows |
| Multiple Vulnerabilities are affected in Mozilla Firefox (x64) 12.0 | Windows |
| Multiple Vulnerabilities are affected in Mozilla_Firefox 12.0 | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-343016 | Mozilla Firefox (x64) (132.0.2) |
| PATCH-315938 | Mozilla Thunderbird (68.12.0) |
| PATCH-343015 | Mozilla Firefox (132.0.2) |
| PATCH-341197 | SeaMonkey (2.53.19) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234