The Mozilla Foundation Security Advisory describes this flaw as: On Windows 10, when using the ‘Save As’ functionality, an attacker could have tricked the browser into saving the file with a disallowed extension such as .url
by including an invalid character in the extension. Note: This issue only affected Windows operating systems. Other operating systems are unaffected.