Oracle Solaris 11: CVE-2017-7814: Vulnerability in Firefox, Thunderbird
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | November 30, 2017 | November 30, 2017 | August 08, 2018 |
Description
File downloads encoded with "blob:" and "data:" URL elements bypassed normal file download checks though the Phishing and Malware Protection feature and its block lists of suspicious sites and files. This would allow malicious sites to lure users into downloading executables that would otherwise be detected as suspicious. This vulnerability affects Firefox < 56, Firefox ESR < 52.4, and Thunderbird < 52.4.
Scan For This Vulnerability
Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities
References
Solution
oracle-solaris-11-3-upgrade-mail-thunderbird-52-4-0-0-175-3-26-0-4-0Related Vulnerabilities
- Oracle Solaris 11: CVE-2017-7823: Vulnerability in Firefox, Thunderbird
- Gentoo Linux: CVE-2017-7805: Mozilla Thunderbird: Multiple vulnerabilities
- Huawei EulerOS: CVE-2017-7805: nss security update
- MFSA2017-22 Firefox: Security vulnerabilities fixed in Firefox ESR 52.4 (CVE-2017-7805)
- Alpine Linux: CVE-2017-7814: firefox-esr Multiple vulnerabilities
- MFSA2017-22 Firefox: Security vulnerabilities fixed in Firefox ESR 52.4 (CVE-2017-7825)
- MFSA2017-22 Firefox: Security vulnerabilities fixed in Firefox ESR 52.4 (CVE-2017-7823)
- Sun Patch: NSS_NSPR_JSS 3.35 Solaris: NSPR 4.18 / NSS 3.35 / JSS 4.3.2 Mainte
- Gentoo Linux: CVE-2017-7814: Mozilla Thunderbird: Multiple vulnerabilities
- Gentoo Linux: CVE-2017-7825: Mozilla Thunderbird: Multiple vulnerabilities
- MFSA2017-21 Firefox: Security vulnerabilities fixed in Firefox 56 (CVE-2017-7805)
- Sun Patch: NSS_NSPR_JSS 3.35: NSPR 4.18 / NSS 3.35 / JSS 4.3.2
- MFSA2017-23 Thunderbird: Security vulnerabilities fixed in Thunderbird 52.4 (CVE-2017-7805)
- MFSA2017-21 Firefox: Security vulnerabilities fixed in Firefox 56 (CVE-2017-7823)
- Alpine Linux: CVE-2017-7823: firefox-esr Multiple vulnerabilities
- Huawei EulerOS: CVE-2017-7805: nss security update
- Sun Patch: NSS_NSPR_JSS 3.30.2_x86: NSPR 4.15 / NSS 3.30.2 / JSS 4.3.2
- Oracle Solaris 11: CVE-2017-7825: Vulnerability in Firefox, Thunderbird
- Sun Patch: NSS_NSPR_JSS 3.35: NSPR 4.18 / NSS 3.35 / JSS 4.3.2
- MFSA2017-21 Firefox: Security vulnerabilities fixed in Firefox 56 (CVE-2017-7825)
- MFSA2017-23 Thunderbird: Security vulnerabilities fixed in Thunderbird 52.4 (CVE-2017-7825)
- MFSA2017-23 Thunderbird: Security vulnerabilities fixed in Thunderbird 52.4 (CVE-2017-7814)
- Alpine Linux: CVE-2017-7825: firefox-esr Multiple vulnerabilities
- Sun Patch: NSS_NSPR_JSS 3.35_x86: NSPR 4.18 / NSS 3.35 / JSS 4.3.2
- Sun Patch: NSS_NSPR_JSS 3.35: NSPR 4.18 / NSS 3.35 / JSS 4.3.2
- Alpine Linux: CVE-2017-7805: firefox-esr Multiple vulnerabilities
- Gentoo Linux: CVE-2017-7823: Mozilla Thunderbird: Multiple vulnerabilities
- Sun Patch: NSS_NSPR_JSS 3.35 Solaris_x86: NSPR 4.18 / NSS 3.35 / JSS 4.3.2 Ma
- MFSA2017-22 Firefox: Security vulnerabilities fixed in Firefox ESR 52.4 (CVE-2017-7814)
- MFSA2017-21 Firefox: Security vulnerabilities fixed in Firefox 56 (CVE-2017-7814)
- Oracle Solaris 11: CVE-2017-7805: Vulnerability in Firefox, Thunderbird
- MFSA2017-23 Thunderbird: Security vulnerabilities fixed in Thunderbird 52.4 (CVE-2017-7823)