Arthur Edelstein

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 55 Firefox ESR versions prior to 52.3 Thunderbird versions prior to 52.3 **Description** The issue is related to an error in the "WindowsDllDetourPatcher" where a Read/Write/Execute block is allocated but not protected, violating DEP protections. This affects Windows operating systems. The vulnerability is associated with insecure privilege management in the implementation of the WindowsDllDetourPatcher class in Firefox, Firefox ESR, and Thunderbird browsers, potentially allowing a remote attacker to compromise data integrity. **Recommendations** For Firefox versions prior to 55, update to version 55 or later. For Firefox ESR versions prior to 52.3, update to version 52.3 or later. For Thunderbird versions prior to 52.3, update to version 52.3 or later.