Excel .xll
add-in files did not have a blocklist entry in Firefoxs executable blocklist which allowed them to be downloaded without any warning of their potential harm. This vulnerability affects Firefox < 117, Firefox ESR < 102.15, Firefox ESR < 115.2, Thunderbird < 102.15, and Thunderbird < 115.2.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | * | 117.0 (excluding) |
Firefox_esr | Mozilla | * | 102.15 (excluding) |
Firefox_esr | Mozilla | 115.0 (including) | 115.2 (excluding) |
Thunderbird | Mozilla | * | 115.2 (excluding) |