VYPR
High severity7.8NVD Advisory· Published Jun 13, 2016· Updated Jun 17, 2026

CVE-2016-2826

CVE-2016-2826

Description

The maintenance service in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 on Windows does not prevent MAR extracted-file modification during updater execution, which might allow local users to gain privileges via a Trojan horse file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*range: <=46.0.1
    • cpe:2.3:a:mozilla:firefox:45.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mozilla:firefox:45.1.1:*:*:*:*:*:*:*
    • (no CPE)range: <47.0

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.