Oracle Solaris 11: CVE-2017-7814: Vulnerability in Firefox, Thunderbird
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:L/AC:M/Au:N/C:P/I:P/A:P) | November 30, 2017 | November 30, 2017 | January 17, 2018 |
Description
File downloads encoded with blob and data URL elements bypassed normal file download checks though the Phishing and Malware Protection feature and its block lists of suspicious sites and files. This would allow malicious sites to lure users into downloading executables that would otherwise be detected as suspicious.
Scan For This Vulnerability
Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities
References
Solution
oracle-solaris-11-3-upgrade-mail-thunderbird-52-4-0-0-175-3-26-0-4-0Related Vulnerabilities
- Alpine Linux: CVE-2017-7814: firefox-esr Multiple vulnerabilities
- Gentoo Linux: CVE-2017-7814: Mozilla Thunderbird: Multiple vulnerabilities
- MFSA2017-23 Thunderbird: Security vulnerabilities fixed in Thunderbird 52.4 (CVE-2017-7814)
- MFSA2017-22 Firefox: Security vulnerabilities fixed in Firefox ESR 52.4 (CVE-2017-7814)