Critical severity9.8NVD Advisory· Published Jun 11, 2018· Updated Jun 17, 2026
CVE-2017-5397
CVE-2017-5397
Description
The cache directory on the local file system is set to be world writable. Firefox defaults to extracting libraries from this cache. This allows for the possibility of an installed malicious application or tools with write access to the file system to replace files used by Firefox with their own versions. This vulnerability affects Firefox < 51.0.3.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<51.0.3+ 1 more
- (no CPE)range: <51.0.3
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
3- bugzilla.mozilla.org/show_bug.cginvdIssue TrackingPatchVendor Advisory
- www.securityfocus.com/bid/96144nvdThird Party AdvisoryVDB Entry
- www.mozilla.org/security/advisories/mfsa2017-04/nvdVendor Advisory
News mentions
0No linked articles in our index yet.