Untrusted Search Path Vulnerability in Mozilla Firefox and Thunderbird
CVE-2011-2980 · HIGH Severity
AV:L/AC:L/AU:N/C:C/I:C/A:C
Untrusted search path vulnerability in the ThinkPadSensor::Startup function in Mozilla Firefox before 3.6.20, Thunderbird 3.x before 3.1.12, allows local users to gain privileges by leveraging write access in an unspecified directory to place a Trojan horse DLL that is loaded into the running Firefox process.
Learn more about our Cis Benchmark Audit For Mozilla Firefox.