Local File Disclosure Vulnerability in Internet Explorer and Firefox

Local File Disclosure Vulnerability in Internet Explorer and Firefox

CVE-2019-11700 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

A hyperlink using the res: protocol can be used to open local files at a known location in Internet Explorer if a user approves execution when prompted. *Note: this issue only occurs on Windows. Other operating systems are unaffected.*. This vulnerability affects Firefox < 67.

Learn more about our Cis Benchmark Audit For Operating Systems.