Privilege escalation vulnerability in Mozilla Firefox - CVE-2017-7836 (Mac OS X)| ID: oval:org.secpod.oval:def:42835 | Date: (C)2017-11-24 (M)2023-11-19 |
| Class: VULNERABILITY | Family: macos |
Mozilla Firefox before 57.0 :- The "pingsender" executable used by the Firefox Health Report dynamically loads a system copy of libcurl, which an attacker could replace. This allows for privilege escalation as the replaced libcurl code will run with Firefox's privileges.
| Platform: |
| Apple Mac OS 14 |
| Apple Mac OS 13 |
| Apple Mac OS 12 |
| Apple Mac OS 11 |
| Apple Mac OS X 10.15 |
| Apple Mac OS X 10.14 |
| Apple Mac OS X 10.9 |
| Apple Mac OS X 10.10 |
| Apple Mac OS X 10.11 |
| Apple Mac OS X 10.12 |
| Apple Mac OS X 10.13 |
| Apple Mac OS X Server 10.13 |
