Description
An unspecified vulnerability was found in Mozilla Firefox. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via vectors related ti PDF viewer.
Technical details
There are way to bypass same origin policy and inject script into a non-privileged part of the PDF Viewer. In case of exploitation malicious can steal sensitive local files (potentially private ssh keys and some popular config files). Some of people who using adblock may have been protected.
Original advisories
Exploitation
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Related products
CVE list
- CVE-2015-4495 warning
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com