The ms-msdt, search, and search-ms protocols deliver content to Microsoft applications, bypassing the browser, when a user accepts a prompt. These app

FIREFOX

MICROSOFT

OPERATING SYSTEMS

SYSTEMS

15-04-2025 19:44

CVE-2022-34478 Vulnerabilidad documentada

6.5 MEDIUM

Tags

#exploit

#windows

#open

#systems

#operating systems

#microsoft

#firefox

#vulnerability

#browser

#application

#/windows(.*)11/iU

#windows 11

#/windows(.*)10/iU

#windows 10

#affected

#bypass

#pass

#bug

#affect

Descripción

The ms-msdt, search, and search-ms protocols deliver content to Microsoft applications, bypassing the browser, when a user accepts prompt. These applications have had known vulnerabilities, exploited in wild (although we know of none through Thunderbird), so this release Thunderbird has blocked these from prompting open them.
*This bug only affects on Windows. Other operating systems are unaffected.*. This vulnerability Firefox < 102, ESR 91.11, 91.11.

https://bugzilla.mozilla.org/show_bug.cgi?id=1773717

https://www.mozilla.org/security/advisories/mfsa2022-24/

https://www.mozilla.org/security/advisories/mfsa2022-25/

https://www.mozilla.org/security/advisories/mfsa2022-26/

https://bugzilla.mozilla.org/show_bug.cgi?id=1773717

https://www.mozilla.org/security/advisories/mfsa2022-24/

https://www.mozilla.org/security/advisories/mfsa2022-25/

https://www.mozilla.org/security/advisories/mfsa2022-26/

Referencia

Link externo

Ver detalles

Fuente

https://nvd.nist.gov/vuln/detail/CVE-2022-34478

Resultados similares

Coincidentes en almenos en 50% de los tags

18-04-2025 CVE-2022-22752
Mozilla developers Christian Holler and Jason Kratzer reported memory safety bugs present in Fi...
Ver información

17-04-2025 CVE-2025-3608
A race condition existed in nsHttpTransaction that could have been exploited to cause memory co...
Ver información