CVE-2017-7814
Last modified
CVE-2017-7814 is a vulnerability of currently unknown severity. File downloads encoded with "blob:" and "data:" URL elements bypassed normal file download checks though the Phishing and Malware Protection feature and its block lists of suspicious sites and files. This would allow malicious sites to lure users into downloading executables that would otherwise be detected as suspicious. EPSS estimates a 1.23% chance of exploitation in the next 30 days.
Description
File downloads encoded with "blob:" and "data:" URL elements bypassed normal file download checks though the Phishing and Malware Protection feature and its block lists of suspicious sites and files. This would allow malicious sites to lure users into downloading executables that would otherwise be detected as suspicious. This vulnerability affects Firefox < 56, Firefox ESR < 52.4, and Thunderbird < 52.4.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Redhat | Enterprise Linux Desktop | 6.0 |
| Redhat | Enterprise Linux Desktop | 7.0 |
| Redhat | Enterprise Linux Server | 6.0 |
| Redhat | Enterprise Linux Server | 7.0 |
| Redhat | Enterprise Linux Server Aus | 7.4 |
| Redhat | Enterprise Linux Server Eus | 7.4 |
| Redhat | Enterprise Linux Server Eus | 7.5 |
| Redhat | Enterprise Linux Workstation | 6.0 |
| Redhat | Enterprise Linux Workstation | 7.0 |
| Mozilla | Firefox | < 52.4.0 |
| Mozilla | Firefox | < 56.0 |
| Mozilla | Thunderbird | < 52.4.0 |
| Debian | Debian Linux | 7.0 |
| Debian | Debian Linux | 8.0 |
| Debian | Debian Linux | 9.0 |
References
- http://www.securityfocus.com/bid/101059Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1039465Third Party Advisory, VDB Entry
- https://access.redhat.com/errata/RHSA-2017:2831Third Party Advisory
- https://access.redhat.com/errata/RHSA-2017:2885Third Party Advisory
- https://bugzilla.mozilla.org/show_bug.cgi?id=1376036Issue Tracking, Patch, Third Party Advisory
- https://lists.debian.org/debian-lts-announce/2017/11/msg00000.htmlThird Party Advisory
- https://security.gentoo.org/glsa/201803-14Third Party Advisory
- https://www.debian.org/security/2017/dsa-3987Third Party Advisory
- https://www.debian.org/security/2017/dsa-4014Third Party Advisory
- https://www.mozilla.org/security/advisories/mfsa2017-21/Vendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2017-22/Vendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2017-23/Vendor Advisory
- http://www.securityfocus.com/bid/101059Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1039465Third Party Advisory, VDB Entry
- https://access.redhat.com/errata/RHSA-2017:2831Third Party Advisory
- https://access.redhat.com/errata/RHSA-2017:2885Third Party Advisory
- https://bugzilla.mozilla.org/show_bug.cgi?id=1376036Issue Tracking, Patch, Third Party Advisory
- https://lists.debian.org/debian-lts-announce/2017/11/msg00000.htmlThird Party Advisory
- https://security.gentoo.org/glsa/201803-14Third Party Advisory
- https://www.debian.org/security/2017/dsa-3987Third Party Advisory
- https://www.debian.org/security/2017/dsa-4014Third Party Advisory
- https://www.mozilla.org/security/advisories/mfsa2017-21/Vendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2017-22/Vendor Advisory
- https://www.mozilla.org/security/advisories/mfsa2017-23/Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-7814?
How severe is CVE-2017-7814?
How do I fix CVE-2017-7814?
Are you affected by CVE-2017-7814?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST