Steve Nyan Lin

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 79 Firefox ESR versions prior to 78.1 Thunderbird versions prior to 78.1 **Description** The issue allows an attacker to load attacker-supplied DLL files from the installation directory, but this requires the attacker to already have the capability to place files in the installation directory. This problem is specific to Windows operating systems, with other operating systems being unaffected. **Recommendations** For Firefox versions prior to 79, update to version 79 or later. For Firefox ESR versions prior to 78.1, update to version 78.1 or later. For Thunderbird versions prior to 78.1, update to version 78.1 or later.