CVE-2018-18506

Published: Feb 5, 2019Modified: Nov 21, 2024

5.9

Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Exploitability: 2.2 / Impact: 3.6

Source: NVD

Description

When proxy auto-detection is enabled, if a web server serves a Proxy Auto-Configuration (PAC) file or if a PAC file is loaded locally, this PAC file can specify that requests to the localhost are to be sent through the proxy to another server. This behavior is disallowed by default when a proxy is manually configured, but when enabled could allow for attacks on services and tools that bind to the localhost for networked behavior if they are accessed through browsing. This vulnerability affects Firefox < 65.

Affected (29)

Products: Mozilla: Firefox · Canonical: Ubuntu Linux · Debian: Debian Linux · +2 more

Show all products

Mozilla: Firefox · Canonical: Ubuntu Linux · Debian: Debian Linux · Redhat: Enterprise Linux, Enterprise Linux Desktop, Enterprise Linux Eus, Enterprise Linux Server, Enterprise Linux Server Aus, Enterprise Linux Server Eus, Enterprise Linux Server Tus, Enterprise Linux Workstation · Opensuse: Leap

1 product

1 product

1 product

8 products

Enterprise Linux Desktop

Enterprise Linux Eus

Enterprise Linux Server

Enterprise Linux Server Aus

Enterprise Linux Server Eus

Enterprise Linux Server Tus

Enterprise Linux Workstation

Opensuse

1 product

Leap

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Mozilla Firefox	Before 65.0

Configuration B

4 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 16.04
Canonical Ubuntu Linux	Version 18.04
Canonical Ubuntu Linux	Version 18.10

Configuration C

2 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 8.0
Debian Debian Linux	Version 9.0

Configuration D

20 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux	Version 8.0
Redhat Enterprise Linux Desktop	Version 6.0
Redhat Enterprise Linux Desktop	Version 7.0
Redhat Enterprise Linux Eus	Version 8.1
Redhat Enterprise Linux Eus	Version 8.2
Redhat Enterprise Linux Eus	Version 8.4
Redhat Enterprise Linux Eus	Version 8.6
Redhat Enterprise Linux Server	Version 6.0
Redhat Enterprise Linux Server	Version 7.0
Redhat Enterprise Linux Server Aus	Version 7.6
Redhat Enterprise Linux Server Aus	Version 8.2
Redhat Enterprise Linux Server Aus	Version 8.4
Redhat Enterprise Linux Server Aus	Version 8.6
Redhat Enterprise Linux Server Eus	Version 7.6
Redhat Enterprise Linux Server Tus	Version 7.6
Redhat Enterprise Linux Server Tus	Version 8.2
Redhat Enterprise Linux Server Tus	Version 8.4
Redhat Enterprise Linux Server Tus	Version 8.6
Redhat Enterprise Linux Workstation	Version 6.0
Redhat Enterprise Linux Workstation	Version 7.0

Configuration E

2 vulnerable

Vulnerable Software	Affected Versions
Opensuse Leap	Version 15.0
Opensuse Leap	Version 42.3

References (42)

http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00035.html

Source: security@mozilla.org

Broken LinkMailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00043.html

Source: security@mozilla.org

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00023.html

Source: security@mozilla.org

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html

Source: security@mozilla.org

Mailing ListThird Party Advisory

http://www.securityfocus.com/bid/106773

Source: security@mozilla.org

Broken LinkThird Party AdvisoryVDB Entry

https://access.redhat.com/errata/RHSA-2019:0622

Source: security@mozilla.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2019:0623

Source: security@mozilla.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2019:0680

Source: security@mozilla.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2019:0681

Source: security@mozilla.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2019:0966

Source: security@mozilla.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2019:1144

Source: security@mozilla.org

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2019/03/msg00024.html

Source: security@mozilla.org

Mailing ListThird Party Advisory

https://lists.debian.org/debian-lts-announce/2019/04/msg00000.html

Source: security@mozilla.org

Mailing ListThird Party Advisory

https://seclists.org/bugtraq/2019/Apr/0

Source: security@mozilla.org

Mailing ListThird Party Advisory

https://seclists.org/bugtraq/2019/Mar/28

Source: security@mozilla.org

Mailing ListThird Party Advisory

https://security.gentoo.org/glsa/201904-07

Source: security@mozilla.org

Third Party Advisory

https://usn.ubuntu.com/3874-1/

Source: security@mozilla.org

Third Party Advisory

https://usn.ubuntu.com/3927-1/

Source: security@mozilla.org

Third Party Advisory

https://www.debian.org/security/2019/dsa-4411

Source: security@mozilla.org

Third Party Advisory

https://www.debian.org/security/2019/dsa-4420

Source: security@mozilla.org

Third Party Advisory

https://www.mozilla.org/security/advisories/mfsa2019-01/

Source: security@mozilla.org

Vendor Advisory

http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00035.html