Rewterz Threat Alert – RedLine Stealer – Active IOCs
September 23, 2022How I bypassed Local Group Policy and Domain Group Policy (Powershell Restrictions)
September 23, 2022Rewterz Threat Alert – RedLine Stealer – Active IOCs
September 23, 2022How I bypassed Local Group Policy and Domain Group Policy (Powershell Restrictions)
September 23, 2022Severity
Medium
Analysis Summary
CVE-2022-3155
Mozilla Thunderbird could allow a remote attacker to bypass security restrictions, caused by the failure to set attribute com.apple.quarantine on the received file when saving or opening an email attachment on macOS. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to execute attachment files without warning.
Impact
- Security Bypass
Indicators Of Compromise
CVE
- CVE-2022-3155
Affected Vendors
- Mozilla
Affected Products
- Mozilla Thunderbird 102.2
Remediation
Refer to Mozilla Foundation Security Advisory for patch, upgrade or suggested workaround information.