KLA11668
Multiple vulnerabilities in Mozilla Firefox

Updated: 06/03/2020
Detect date
?
02/11/2020
Severity
?
High
Description

Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to execute arbitrary code, perform cross-site scripting attack, cause denial of service.

Below is a complete list of vulnerabilities:

  1. A memory corruption vulnerability can be exploited to execute arbitrary code.
  2. Bypass security vulnerability can be exploited to execute arbitrary code only on Mac OSX.
  3. Cross-site scripting vulnerability can be exploited remotely to perform cross-site scripting attacks.
  4. A default handler vulnerability can be exploited to execute arbitrary code only in Windows.
  5. A write-operation memory vulnerability can be exploited to cause denial of service.
Affected products

Mozilla Firefox earlier than 73

Solution

Update to the latest version
Download Mozilla Firefox

Original advisories

mfsa2020-05

Impacts
?
ACE 
[?]

DoS 
[?]

XSS/CSS 
[?]
Related products
Mozilla Firefox
CVE-IDS
?
Find out the statistics of the vulnerabilities spreading in your region