vulnerability

CentOS Linux: CVE-2017-16541: Critical: firefox security update (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:P/I:N/A:N)	Nov 4, 2017	Sep 15, 2018	May 25, 2023

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:N/A:N)

Published

Nov 4, 2017

Added

Sep 15, 2018

Modified

May 25, 2023

Description

Tor Browser before 7.0.9 on macOS and Linux allows remote attackers to bypass the intended anonymity feature and discover a client IP address via vectors involving a crafted web site that leverages file:// mishandling in Firefox, aka TorMoil. NOTE: Tails is unaffected.

Solutions

centos-upgrade-firefoxcentos-upgrade-firefox-debuginfocentos-upgrade-thunderbirdcentos-upgrade-thunderbird-debuginfo

References

BID-101665
DEBIAN-DSA-4327
GENTOO-GLSA-201810-01
GENTOO-GLSA-201811-13
NVD-CVE-2017-16541
REDHAT-RHSA-2018:2692
REDHAT-RHSA-2018:2693
REDHAT-RHSA-2018:3403
REDHAT-RHSA-2018:3458
SECTRACK-1041610

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report