CVE-2017-5427 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Medium
Remote	No
Type	Arbitrary code execution
Description	A non-existent chrome.manifest file will attempt to be loaded during startup from the primary installation directory. If a malicious user with local access puts chrome.manifest and other referenced files in this directory, they will be loaded and activated during startup. This could result in malicious software being added without consent or modification of referenced installed files.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-194	firefox	51.0.1-1	52.0-1	Critical	Fixed

Date	Advisory	Group	Package	Severity	Type
10 Mar 2017	ASA-201703-3	AVG-194	firefox	Critical	multiple issues

References
https://www.mozilla.org/en-US/security/advisories/mfsa2017-05/#CVE-2017-5427 https://bugzilla.mozilla.org/show_bug.cgi?id=1295542