Firefox < 22.214.171.124 Apple QuickTime Plug-In .qtl File qtnext Field Cross-context Scripting
High Nessus Plugin ID 26068
SynopsisThe remote Windows host contains a web browser that may allow arbitrary code execution.
DescriptionThe installed version of Firefox may allow a remote attacker to run script commands subject to the user's privileges via 'qtnext' attributes in QuickTime Media-Link files.
SolutionUpgrade to Firefox 126.96.36.199 or later.