Mozilla Products: Files extracted during updates are not always read only - CVE-2014-1496 (Mac OS X)| ID: oval:org.secpod.oval:def:17319 | Date: (C)2014-03-21 (M)2023-11-18 |
| Class: VULNERABILITY | Family: macos |
Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 might allow local users to gain privileges by modifying the extracted Mar contents during an update.
| Platform: |
| Apple Mac OS 14 |
| Apple Mac OS 13 |
| Apple Mac OS 12 |
| Apple Mac OS 11 |
| Apple Mac OS X 10.15 |
| Apple Mac OS X 10.14 |
| Apple Mac OS X 10.13 |
| Apple Mac OS X 10.11 |
| Apple Mac OS X 10.12 |
| Product: |
| Mozilla Thunderbird |
| Mozilla Firefox ESR |
| Mozilla SeaMonkey |
| Mozilla Firefox |
