Description
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, perform cross-site scripting attack, bypass security restrictions, gain privileges.
Below is a complete list of vulnerabilities:
- A vulnerability can be exploited remotely to execute arbitrary code;
- Multiple memory corruption vulnerabilities can be exploited to execute arbitrary code;
- A vulnerability can be exploited remotely to perform cross-site scripting attacks;
- A sandbox escape vulnerability can be exploited to bypass security restrictions;
- A type confusion vulnerability can be exploited to cause denial of service;
- A same-origin policy violation vulnerability can be exploited to bypass security restrictions;
- Multiple race condition vulnerabilities in Mozilla Maintenance Service can be exploited to gain privileges;
- A vulnerability in WebRTC can be exploited to bypass security restrictions;
- Multiple use-after-free vulnerabilities can be exploited remotely to cause denial of service;
- A cross-origin access vulnerability can be exploited to bypass security restrictions;
Original advisories
Exploitation
Public exploits exist for this vulnerability.
Related products
CVE list
- CVE-2019-11751 critical
- CVE-2019-11752 critical
- CVE-2019-11735 critical
- CVE-2019-11746 critical
- CVE-2019-9812 critical
- CVE-2019-11750 high
- CVE-2019-11742 high
- CVE-2019-11738 high
- CVE-2019-11749 warning
- CVE-2019-11753 critical
- CVE-2019-11736 high
- CVE-2019-11748 high
- CVE-2019-11740 critical
- CVE-2019-11747 high
- CVE-2019-11744 high
- CVE-2019-11743 warning
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!