When handling the filename directive in the Content-Disposition header, the filename would be truncated if the filename contained a NULL character. This could have led to reflected file download attacks potentially tricking users to install malware. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10.
A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | * | 112.0 (excluding) |
Firefox_esr | Mozilla | * | 102.10 (excluding) |
Focus | Mozilla | * | 112.0 (excluding) |
Thunderbird | Mozilla | * | 102.10 (excluding) |