CVE-2019-17019

Summary

When Python was installed on Windows, a python file being served with the MIME type of text/plain could be executed by Python instead of being opened as a text file when the Open option was selected upon download. Note: this issue only occurs on Windows. Other operating systems are unaffected.. This vulnerability affects Firefox < 72.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxbefore 72affected

Weaknesses

  • Python files could be inadvertently executed upon opening a download

ADP Enrichment

CVE Program Container

Additional References

References