Untrusted Search Path Vulnerability in Mozilla Firefox and Thunderbird

Untrusted Search Path Vulnerability in Mozilla Firefox and Thunderbird

CVE-2011-2980 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Untrusted search path vulnerability in the ThinkPadSensor::Startup function in Mozilla Firefox before 3.6.20, Thunderbird 3.x before 3.1.12, allows local users to gain privileges by leveraging write access in an unspecified directory to place a Trojan horse DLL that is loaded into the running Firefox process.

Learn more about our Cis Benchmark Audit For Mozilla Firefox.