Excel .xll
add-in files did not have a blocklist entry in Firefox’s executable blocklist which allowed them to be downloaded without any warning of their potential harm. This vulnerability affects Firefox < 117, Firefox ESR < 102.15, Firefox ESR < 115.2, Thunderbird < 102.15, and Thunderbird < 115.2.
CPE | Name | Operator | Version |
---|---|---|---|
firefox | lt | 117.0 | |
firefox_esr | ge | 115.0 | |
firefox_esr | lt | 115.2 | |
firefox_esr | lt | 102.15 | |
thunderbird | lt | 115.2 |