mirror of
https://github.com/0xMarcio/cve.git
synced 2025-12-16 20:27:21 +00:00
1.1 KiB
1.1 KiB
CVE-2019-11751
Description
Logging-related command line parameters are not properly sanitized when Firefox is launched by another program, such as when a user clicks on malicious links in a chat application. This can be used to write a log file to an arbitrary location such as the Windows 'Startup' folder.
Note: this issue only affects Firefox on Windows operating systems.. This vulnerability affects Firefox < 69 and Firefox ESR < 68.1.
POC
Reference
Github
No PoCs found on GitHub currently.