Candidate: CVE-2013-1672
PublicDate: 2013-05-16 11:45:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1672
 http://www.mozilla.org/security/announce/2013/mfsa2013-44.html
Description:
 The Mozilla Maintenance Service in Mozilla Firefox before 21.0, Firefox ESR
 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x
 before 17.0.6 on Windows allows local users to bypass integrity
 verification and gain privileges via vectors involving junctions.
Ubuntu-Description: 
Notes: 
 chrisccoulson> Affects the Mozilla Maintenance Service on Windows only
Bugs: 
Priority: medium
Discovered-by:
Assigned-to: chrisccoulson
CVSS: 

Patches_firefox:
upstream_firefox: released (21.0)
lucid_firefox: ignored (reached end-of-life)
precise_firefox: not-affected
quantal_firefox: not-affected
raring_firefox: not-affected
devel_firefox: not-affected

Patches_thunderbird:
upstream_thunderbird: released (17.0.6)
lucid_thunderbird: ignored (reached end-of-life)
precise_thunderbird: not-affected
quantal_thunderbird: not-affected
raring_thunderbird: not-affected
devel_thunderbird: not-affected