Produkty:
Domů
Pro malé podniky
Pro střední podniky
Pro velké podniky
Zranitelnosti Hrozby
Úvod Zranitelnosti

Multiple vulnerabilities in Mozilla Firefox

Kaspersky ID:
KLA11611
Detekováno:
12/03/2019
Aktualizováno:
01/28/2026

Popis

Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service, bypass security restrictions.

Below is a complete list of vulnerabilities:

  1. Incorrectly image loading vulnerability in Mozilla Firefox can be exploited remotely via specially designed website to obtain sensitive information
  2. Race condition vulnerability in Resist Fingerprinting can be exploited remotely via specially designed website to cause denial of service;
  3. Stack corruption due to incorrect number of arguments in WebRTC code can be exploited remotely via specially designed website to cause denial of service;
  4. Use-after-free vulnerability in SFTKSession object can be exploited remotely via specially designed website to cause denial of service;
  5. Incorrect temporary files access configuration of Mozilla updater service can be exploited locally to bypass security restrictions;
  6. Use-after-free vulnerability in DocShell can be exploited remotely via specially designed website to cause denial of service;
  7. Buffer overflow vulnerability in plain Firefox text serializer can be exploited remotely via specially designed website to cause denial of service;
  8. Use-after-free vulnerability in worker destruction can be exploited remotely via specially designed website to cause denial of service;
  9. Out of bounds write vulnerability in NSS can be exploited remotely via specially designed website to cause denial of service;

Oficiální doporučení

Vykořisťování

Public exploits exist for this vulnerability.

Související produkty

seznam CVE

  • CVE-2019-17014
    high
  • CVE-2019-17012
    critical
  • CVE-2019-17010
    critical
  • CVE-2019-17013
    critical
  • CVE-2019-13722
    high
  • CVE-2019-11756
    critical
  • CVE-2019-17009
    critical
  • CVE-2019-17011
    critical
  • CVE-2019-17005
    critical
  • CVE-2019-17008
    critical
  • CVE-2019-11745
    critical

Zobrazit více

Zjistěte statistiky zranitelností šířících se ve vaší oblasti statistics.securelist.com

Našli jste v popisu této chyby zabezpečení nepřesnost? Dej nám vědět!
Kaspersky Next
Let’s go Next: redefine your business’s cybersecurity
Zjistěte více
Kaspersky Premium
Zjistěte více
Related articles
26 March 2026
Securelist
An AI gateway designed to steal your data
26 March 2026
Securelist
Coruna: the framework used in Operation Triangulation
25 March 2026
Securelist
Anatomy of a Cyber World Global Report 2026
18 March 2026
Securelist
The SOC Files: Time to “Sapecar”. Unpacking a new Horabot campaign in Mexico
16 March 2026
Securelist
Free real estate: GoPix, the banking Trojan living off your memory
10 March 2026
Securelist
BeatBanker: A dual‑mode Android Trojan
Našli jste v popisu této chyby zabezpečení nepřesnost?
Pokud jste našli novou hrozbu nebo zranitelnost, dejte nám prosím vědět e-mailem:
newvirus@kaspersky.com
Našli jste novou hrozbu nebo zranitelnost?
Pokud jste našli novou hrozbu nebo zranitelnost, dejte nám prosím vědět e-mailem:
newvirus@kaspersky.com
Produkty
Domů
Pro malé podniky
Pro střední podniky
Pro velké podniky
Select language
Severity level
Critical
High
Warning
Sorting
Kaspersky ID
Zranitelnost
Detect date
Míra zranitelnosti
You must select at least one severity level
Do you want to save your changes?
Your message has been sent successfully.