mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
931 B
931 B
CVE-2023-25740
Description
After downloading a Windows .scf script from the local filesystem, an attacker could supply a remote path that would lead to unexpected network requests from the operating system. This also had the potential to leak NTLM credentials to the resource.
This bug only affects Firefox for Windows. Other operating systems are unaffected.. This vulnerability affects Firefox < 110.
POC
Reference
No PoCs from references.