CVE-2016-2826 in Firefox
Сводка
по MITRE
The maintenance service in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 on Windows does not prevent MAR extracted-file modification during updater execution, which might allow local users to gain privileges via a Trojan horse file.
Be aware that VulDB is the high quality source for vulnerability data.