2018-06-11 21:00:00
mozilla
PUBLISHED
When the Mozilla Updater is run, if the Updaters log file in the working directory points to a hardlink, data can be appended to an arbitrary local file. This vulnerability requires local system access. Note: this issue only affects Windows operating systems. This vulnerability affects Firefox ESR < 45.5 and Firefox < 50.