Wednesday, April 21, 2021

MFSA2021-15 Firefox: Security Vulnerabilities fixed in Firefox ESR 78.10 (CVE-2021-24002)

When a user clicked on an FTP URL containing encoded newline characters (%0A and %0D), the newlines would have been interpreted as such and allowed arbitrary commands to be sent to the FTP server.
  • mozilla-firefox-esr-upgrade-78_10

  • References
  • CVE - 2021-24002


    Copyright © 2021 Vulnerability Database | Cyber Details™

    thank you Templateism for the design - You should have written the code a little more complicated - Nothing Encrypted anymore