CVE-2019-11700

Summary

A hyperlink using the res: protocol can be used to open local files at a known location in Internet Explorer if a user approves execution when prompted. Note: this issue only occurs on Windows. Other operating systems are unaffected.. This vulnerability affects Firefox < 67.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 67affected

Weaknesses

  • res: protocol can be used to open known local files

ADP Enrichment

CVE Program Container

Additional References

References