Soluções para:
Produtos domésticos
Pequenas empresas
Empresas médias
Grandes empresas
Vulnerabilidades Ameaças
Início Vulnerabilidades

Multiple vulnerabilities in Mozilla Firefox

Kaspersky ID:
KLA11611
Data de detecção:
12/03/2019
Atualizado:
01/28/2026

Descrição

Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service, bypass security restrictions.

Below is a complete list of vulnerabilities:

  1. Incorrectly image loading vulnerability in Mozilla Firefox can be exploited remotely via specially designed website to obtain sensitive information
  2. Race condition vulnerability in Resist Fingerprinting can be exploited remotely via specially designed website to cause denial of service;
  3. Stack corruption due to incorrect number of arguments in WebRTC code can be exploited remotely via specially designed website to cause denial of service;
  4. Use-after-free vulnerability in SFTKSession object can be exploited remotely via specially designed website to cause denial of service;
  5. Incorrect temporary files access configuration of Mozilla updater service can be exploited locally to bypass security restrictions;
  6. Use-after-free vulnerability in DocShell can be exploited remotely via specially designed website to cause denial of service;
  7. Buffer overflow vulnerability in plain Firefox text serializer can be exploited remotely via specially designed website to cause denial of service;
  8. Use-after-free vulnerability in worker destruction can be exploited remotely via specially designed website to cause denial of service;
  9. Out of bounds write vulnerability in NSS can be exploited remotely via specially designed website to cause denial of service;

Comunicados originais

Exploração

Public exploits exist for this vulnerability.

Produtos relacionados

Lista de CVE

  • CVE-2019-17014
    high
  • CVE-2019-17012
    critical
  • CVE-2019-17010
    critical
  • CVE-2019-17013
    critical
  • CVE-2019-13722
    high
  • CVE-2019-11756
    critical
  • CVE-2019-17009
    critical
  • CVE-2019-17011
    critical
  • CVE-2019-17005
    critical
  • CVE-2019-17008
    critical
  • CVE-2019-11745
    critical

Saiba mais

Descubra as estatísticas das vulnerabilidades que se espalham em sua região statistics.securelist.com

Encontrou uma imprecisão na descrição desta vulnerabilidade? Avise-nos!
Kaspersky Next:
cibersegurança redefinida
Saber mais
Novo Kaspersky!
Sua vida dgital merece proteção completa!
Saber mais
Related articles
01 April 2026
Securelist
A laughing RAT: CrystalX combines spyware, stealer, and prankware features
26 March 2026
Securelist
An AI gateway designed to steal your data
26 March 2026
Securelist
Coruna: the framework used in Operation Triangulation
25 March 2026
Securelist
Anatomy of a Cyber World Global Report 2026
18 March 2026
Securelist
The SOC Files: Time to “Sapecar”. Unpacking a new Horabot campaign in Mexico
16 March 2026
Securelist
Free real estate: GoPix, the banking Trojan living off your memory
Encontrou uma imprecisão na descrição desta vulnerabilidade?
Se você encontrou uma nova Ameaça ou Vulnerabilidade, por favor, nos avise por e-mail:
newvirus@kaspersky.com
Encontrou uma nova Ameaça ou Vulnerabilidade?
Se você encontrou uma nova Ameaça ou Vulnerabilidade, por favor, nos avise por e-mail:
newvirus@kaspersky.com
Soluções para
Produtos domésticos
Pequenas empresas
Empresas médias
Grandes empresas
Select language
Severity level
Critical
High
Warning
Sorting
Kaspersky ID
Vulnerabilidade
Detect date
Nível de gravidade
You must select at least one severity level
Do you want to save your changes?
Your message has been sent successfully.