Privilege Escalation to SYSTEM on Windows via Maintenance Service - CVE-2022-22753ID: oval:org.secpod.oval:def:77702 | Date: (C)2022-02-11 (M)2024-03-27 |
Class: VULNERABILITY | Family: windows |
Mozilla Firefox 97, Mozilla Firefox ESR 91.6 : A Time-of-Check Time-of-Use bug existed in the Maintenance (Updater) Service that could be abused to grant Users write access to an arbitrary directory. This could have been used to escalate to SYSTEM access.
Platform: |
Microsoft Windows Server 2008 |
Microsoft Windows 7 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2016 |
Microsoft Windows Server 2019 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows 10 |
Microsoft Windows Server |
Microsoft Windows Server 2022 |
Microsoft Windows 11 |
Product: |
Mozilla Firefox |
Mozilla Firefox ESR |