Privilege Escalation via Trojan Horse DLL in Mozilla Firefox Maintenance Service Installer

Privilege Escalation via Trojan Horse DLL in Mozilla Firefox Maintenance Service Installer

CVE-2014-1520 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

maintenservice_installer.exe in the Maintenance Service Installer in Mozilla Firefox before 29.0 and Firefox ESR 24.x before 24.5 on Windows allows local users to gain privileges by placing a Trojan horse DLL file into a temporary directory at an unspecified point in the update process.

Learn more about our Cis Benchmark Audit For Mozilla Firefox.