Jim Chen

Name of the Vulnerable Software and Affected Versions: Firefox versions prior to 51.0.3 Description: The issue arises from the cache directory on the local file system being set to world writable, allowing Firefox to extract libraries from this cache. This setup enables a potentially installed malicious application or tools with write access to the file system to replace files used by Firefox with their own versions. Recommendations: For versions prior to 51.0.3, update to version 51.0.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 20.0 on Android **Description** The issue is related to an unspecified vulnerability in the browser engine, allowing remote attackers to cause a denial of service, which includes stack memory corruption and application crash, or possibly execute arbitrary code. This is achieved via unknown vectors involving a plug-in. **Recommendations** For versions prior to 20.0 on Android, update to version 20.0 or later to resolve the issue.