Fortinet's FortiGuard Labs has discovered a DLL loading vulnerability in Mozilla Firefox, which allows a remote attacker to compromise a system through a malicious DLL.
Impact:
Remote code execution.
Risk:
Critical
Affected Software:
For a list of affected software, please refer to the Mozilla Security Advisory reference below.
Additional Information:
One DLL loading vulnerability was discovered in Mozilla Firefox:
DLL pre-loading "dwmapi.dll" through "firefox.exe" (CVE-2010-3131)
Firefox loads a certain library as part of its startup routine ("dwmapi.dll"). If an attacker can successfully plant a malicious DLL with this filename on the victim's system, Firefox can mistakingly load the malicious DLL from its current working directory instead of the intended library. For this to occur, the system must not have a valid "dwmapi.dll" file in the search path (ie: Windows XP). This DLL is only loaded at startup so a successful attack requires that Firefox not currently be running when it is asked to open an HTML file and accompanying DLL from the current working directory.
