Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Mozilla Maintenance Service "helper.exe" application creates a temporary directory writable by non-privileged users. When this is combined with creation of a junction (a form of symbolic link), protected files in the target directory of the junction can be deleted by the Mozilla Maintenance Service, which has privileged access. Note: This attack requires local system access and only affects Windows. Other operating systems are not affected. This vulnerability affects Firefox ESR < 52.2 and Firefox < 54.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Firefox和Firefox ESR for Windows 安全漏洞
Vulnerability Description
Mozilla Firefox for Windows是美国Mozilla基金会的一款基于Windows平台的开源Web浏览器。Firefox ESR for Windows是Firefox的一个基于Windows平台的延长支持版本。 基于Windows平台的Mozilla Firefox 54之前的版本和Firefox ESR 52.2之前的版本中存在安全漏洞。攻击者可利用该漏洞该漏洞删除目标路径下受保护的文件。
CVSS Information
N/A
Vulnerability Type
N/A