A compromised child process could have injected XBL Bindings into privileged CSS rules, resulting in arbitrary code execution and a sandbox escape. This vulnerability affects Firefox < 70.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Firefox |
Mozilla |
* |
70.0 (excluding) |
References