Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
If a user downloaded a file lacking an extension on Windows, and then "Open"-ed it from the downloads panel, if there was an executable file in the downloads directory with the same name but with an executable extension (such as .bat or .exe) that executable would have been launched instead. *Note: This issue only affected Windows operating systems. Other operating systems are unaffected.*. This vulnerability affects Firefox < 84, Thunderbird < 78.6, and Firefox ESR < 78.6.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mozilla Firefox 安全漏洞
Vulnerability Description
Mozilla Firefox是美国Mozilla基金会的一款开源Web浏览器。 Mozilla Firefox 存在安全漏洞,如果用户在Windows上下载了一个没有扩展名的文件,然后在下载面板中“打开”它,如果下载目录中有一个同名但扩展名是bat或exe的可执行文件,那么这个可执行文件将被启动。以下产品和版本受到影响:Firefox < 84, Thunderbird < 78.6, and Firefox ESR < 78.6。
CVSS Information
N/A
Vulnerability Type
N/A