Attila Suszter

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 102 **Description** The issue is related to insufficient warnings about dangerous actions in Mozilla Firefox. An attacker could exploit this by manipulating a filename to contain an executable extension when a user drags and drops an image to a filesystem, potentially tricking the user into executing malicious code. **Recommendations** For versions prior to 102, update to version 102 or later to resolve the issue. As a temporary workaround, consider avoiding dragging and dropping images to the filesystem until a patch is available. Restrict access to executable extensions to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Apple QuickTime versions prior to 7.6 **Description** The issue is related to a heap-based buffer overflow that can be triggered via a crafted RTSP URL, potentially allowing remote attackers to cause a denial of service or execute arbitrary code. **Recommendations** For Apple QuickTime versions prior to 7.6, update to version 7.6 or later to resolve the issue.