Unrated severityNVD Advisory· Published Aug 7, 2013· Updated Jun 16, 2026
CVE-2013-1715
CVE-2013-1715
Description
Multiple untrusted search path vulnerabilities in the (1) full installer and (2) stub installer in Mozilla Firefox before 23.0 on Windows allow local users to gain privileges via a Trojan horse DLL in the default downloads directory. NOTE: this issue exists because of an incomplete fix for CVE-2012-4206.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*range: <=22.0
- cpe:2.3:a:mozilla:firefox:19.0:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:19.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:19.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:20.0:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:20.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:21.0:*:*:*:*:*:*:*
- (no CPE)range: <23.0
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.