CVE-2016-2826 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2016-2826 Interim 1 18 2025-05-01T01:29:11Z current 2021-05-30T13:40:08Z 2025-05-01T01:29:11Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2016-2826 The maintenance service in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 on Windows does not prevent MAR extracted-file modification during updater execution, which might allow local users to gain privileges via a Trojan horse file. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Server 11 SP1 for Teradata SUSE Linux Enterprise Server 11 SP2 LTSS SUSE Linux Enterprise Server 11 SP3 LTSS SUSE Linux Enterprise Server 11 SP3 for Teradata SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Server 11 SP4-LTSS SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 MozillaFirefox MozillaFirefox-devel MozillaFirefox-translations MozillaFirefox-translations-common MozillaFirefox-translations-other MozillaFirefox as a component of SUSE Linux Enterprise Desktop 12 MozillaFirefox-translations as a component of SUSE Linux Enterprise Desktop 12 MozillaFirefox as a component of SUSE Linux Enterprise Desktop 12 SP1 MozillaFirefox-translations as a component of SUSE Linux Enterprise Desktop 12 SP1 MozillaFirefox as a component of SUSE Linux Enterprise Server 11 SP1 for Teradata MozillaFirefox as a component of SUSE Linux Enterprise Server 11 SP2 LTSS MozillaFirefox as a component of SUSE Linux Enterprise Server 11 SP3 LTSS MozillaFirefox as a component of SUSE Linux Enterprise Server 11 SP3 for Teradata MozillaFirefox as a component of SUSE Linux Enterprise Server 11 SP4-LTSS MozillaFirefox-translations-common as a component of SUSE Linux Enterprise Server 11 SP4-LTSS MozillaFirefox-translations-other as a component of SUSE Linux Enterprise Server 11 SP4-LTSS MozillaFirefox as a component of SUSE Linux Enterprise Server 12 MozillaFirefox-translations as a component of SUSE Linux Enterprise Server 12 MozillaFirefox as a component of SUSE Linux Enterprise Server 12 SP1 MozillaFirefox-translations as a component of SUSE Linux Enterprise Server 12 SP1 MozillaFirefox-devel as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 MozillaFirefox as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 MozillaFirefox-devel as a component of SUSE Linux Enterprise Software Development Kit 12 MozillaFirefox as a component of SUSE Linux Enterprise Software Development Kit 12 MozillaFirefox-devel as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 MozillaFirefox as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 The maintenance service in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 on Windows does not prevent MAR extracted-file modification during updater execution, which might allow local users to gain privileges via a Trojan horse file. CVE-2016-2826 SUSE Linux Enterprise Desktop 12 SP1:MozillaFirefox SUSE Linux Enterprise Desktop 12 SP1:MozillaFirefox-translations SUSE Linux Enterprise Desktop 12:MozillaFirefox SUSE Linux Enterprise Desktop 12:MozillaFirefox-translations SUSE Linux Enterprise Server 11 SP1 for Teradata:MozillaFirefox SUSE Linux Enterprise Server 11 SP2 LTSS:MozillaFirefox SUSE Linux Enterprise Server 11 SP3 LTSS:MozillaFirefox SUSE Linux Enterprise Server 11 SP3 for Teradata:MozillaFirefox SUSE Linux Enterprise Server 11 SP4-LTSS:MozillaFirefox SUSE Linux Enterprise Server 11 SP4-LTSS:MozillaFirefox-translations-common SUSE Linux Enterprise Server 11 SP4-LTSS:MozillaFirefox-translations-other SUSE Linux Enterprise Server 12 SP1:MozillaFirefox SUSE Linux Enterprise Server 12 SP1:MozillaFirefox-translations SUSE Linux Enterprise Server 12:MozillaFirefox SUSE Linux Enterprise Server 12:MozillaFirefox-translations SUSE Linux Enterprise Software Development Kit 11 SP4:MozillaFirefox SUSE Linux Enterprise Software Development Kit 11 SP4:MozillaFirefox-devel SUSE Linux Enterprise Software Development Kit 12 SP1:MozillaFirefox SUSE Linux Enterprise Software Development Kit 12 SP1:MozillaFirefox-devel SUSE Linux Enterprise Software Development Kit 12:MozillaFirefox SUSE Linux Enterprise Software Development Kit 12:MozillaFirefox-devel moderate 4.1 AV:L/AC:M/Au:S/C:P/I:P/A:P 7.8 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H