Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Mozilla Maintenance Service can be invoked by an unprivileged user to overwrite arbitrary files with junk data using the Mozilla Windows Updater, which runs with the Maintenance Service's privileged access. Note: This attack requires local system access and only affects Windows. Other operating systems are not affected. This vulnerability affects Firefox ESR < 52.2 and Firefox < 54.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Firefox和Firefox ESR for Windows 安全漏洞
Vulnerability Description
Mozilla Firefox for Windows是美国Mozilla基金会的一款基于Windows平台的开源Web浏览器。Firefox ESR for Windows是Firefox的一个基于Windows平台的延长支持版本。 基于Windows平台的Mozilla Firefox 54之前的版本和Firefox ESR 52.2之前的版本中存在安全漏洞。攻击者可借助Mozilla Maintenance Service和Mozilla Windows Updater利用该漏洞用垃圾数据覆盖任意文
CVSS Information
N/A
Vulnerability Type
N/A