CVE Vulnerabilities

CVE-2016-5253

Published: Aug 05, 2016 | Modified: Aug 16, 2017
CVSS 3.x
4.7
MEDIUM
Source:
NVD
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N
CVSS 2.x
4.7 MEDIUM
AV:L/AC:M/Au:N/C:N/I:C/A:N
RedHat/V2
RedHat/V3
Ubuntu

The Updater in Mozilla Firefox before 48.0 on Windows allows local users to write to arbitrary files via vectors involving the callback application-path parameter and a hard link.

Affected Software

Name Vendor Start Version End Version
Firefox Mozilla * 47.0.1

References