KLA10531
Security bypass vulnerabilities in Mozilla Firefox
Updated: 11/06/2018
CVSS
?
5.0
Detect date
?
04/06/2015
Severity
?
Critical
Description

Multiple serious vulnerabilities have been found in Firefox. Malicious users can exploit these vulnerabilities to bypass security restrictions.

Below is a complete list of vulnerabilities

  1. Lack of privileges restrictions can be exploited remotely via vectors related to reader mode. Firefox for Android and pre-release versions of Desktop Firefox are affected by this vulnerabilities;
  2. An unknown vulnerability can be exploited remotely via a specially designed certificate.
Affected products

Mozilla Firefox versions earlier than 37.0.1

Solution

Update to the latest version
Get Firefox

Original advisories

MFSA-44
MFSA-43

Impacts
?
SB 
[?]
Related products
Mozilla Firefox
CVE-IDS
?

CVE-2015-0799
CVE-2015-0798