firefox is vulnerable to remote code execution. An attacker who could have convinced a user to drag and drop an image to a filesystem could have manipulated the resulting filename to contain an executable extension and potentially tricked the user into executing malicious code.