Vulnerability Details : CVE-2017-7804
The destructor function for the "WindowsDllDetourPatcher" class can be re-purposed by malicious code in concert with another vulnerability to write arbitrary data to an attacker controlled location in memory. This can be used to bypass existing memory protections in this situation. Note: This attack only affects Windows operating systems. Other operating systems are not affected. This vulnerability affects Thunderbird < 52.3, Firefox ESR < 52.3, and Firefox < 55.
Vulnerability category: Input validation
Products affected by CVE-2017-7804
- cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2017-7804
0.31%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 67 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-7804
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:P/A:N |
10.0
|
2.9
|
NIST | |
7.5
|
HIGH | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
3.9
|
3.6
|
NIST |
CWE ids for CVE-2017-7804
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2017-7804
-
https://bugzilla.mozilla.org/show_bug.cgi?id=1372849
1372849 - (CVE-2017-7804) WindowsDllDetourPatcher Destructor Exploit PrimitiveIssue Tracking;Third Party Advisory
-
https://www.mozilla.org/security/advisories/mfsa2017-20/
Security vulnerabilities fixed in Thunderbird 52.3 — MozillaVendor Advisory
-
https://www.mozilla.org/security/advisories/mfsa2017-19/
Security vulnerabilities fixed in Firefox ESR 52.3 — MozillaVendor Advisory
-
https://www.mozilla.org/security/advisories/mfsa2017-18/
Security vulnerabilities fixed in Firefox 55 — MozillaVendor Advisory
-
http://www.securitytracker.com/id/1039124
Mozilla Firefox Multiple Bugs Let Remote Users Spoof Content, Obtain Potentially Sensitive Information, Deny Service and Execute Arbitrary Code - SecurityTrackerThird Party Advisory;VDB Entry
-
http://www.securityfocus.com/bid/100234
Mozilla Firefox and Firefox ESR Multiple Security Bypass VulnerabilitiesThird Party Advisory;VDB Entry
Jump to