By downloading a file with the .fileloc extension, a semi-privileged extension could launch an arbitrary application on the user's computer. The attacker is restricted as they are unable to download non-quarantined files or supply command line arguments to the application, limiting the impact. *Note: this issue only occurs on Mac OSX. Other operating systems are unaffected.* External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2020-06/#CVE-2020-6797
Acknowledgments: Name: the Mozilla project Upstream: Vladimir Metnew