Discord Server Red Security Twitter Donation to Red Security Red Security Youtube Channel Red Security Tumblr Profile
Windscribe
Login or Register to Hide ads and Accessing all features on the forum
Thread Rating:
  • 1 Vote(s) - 3 Average
  • 1
  • 2
  • 3
  • 4
  • 5
News Mozilla Firefox 75 Is Out With Fixes For RCE vulnerabilities
#1
Wink 
In The Name OF Allah
Al-Salam Alekum

[Image: Firefox-75.png]

Hello guys?! How are you doing, looks like our loved browser released another version..
Quote:Mozilla recently disclosed numerous security bugs in their Firefox browser. These include several RCE vulnerabilities in Firefox and Firefox ESR.


In the case of Firefox, the most important bug was a high-severity flaw CVE-2020-6821 leading to information disclosure.

Firefox ESR also exhibited two high-severity flaws affecting Android devices. The first of these CVE-2020-6828 was an Android takeover bug. Regarding this vulnerability, Mozilla explains in its advisory,

A malicious Android application could craft an Intent that would have been processed by Firefox for Android and potentially result in a file overwrite in the user’s profile directory. One exploitation vector for this would be to supply a user.js file providing arbitrary malicious preference values. Control of arbitrary preferences can lead to sufficient compromise such that it is generally equivalent to arbitrary code execution.

When following a link that opened an intent://-schemed URL, causing a custom tab to be opened, Firefox for Android could be tricked into displaying the incorrect URI.

The Source
Wa Salam Alekum
Rs
* Thankful to Allah *
Kurdy
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
Wink News A Twitter Bug Allowed Firefox To Store Cached Files Shared Via DMs Mr.Kurd 0 204 04-05-2020, 09:07 AM
Last Post: Mr.Kurd
Exclamation News Hackers Exploiting 2 Unpatched Windows 0-Day Vulnerabilities in Wide – Microsoft Warn Mr.Kurd 0 340 03-24-2020, 07:56 AM
Last Post: Mr.Kurd
Rainbow News Researchers Find Security Vulnerabilities In Some of The Top Password Managers Mr.Kurd 0 152 03-23-2020, 08:02 AM
Last Post: Mr.Kurd
Star News Trend Micro Patched Zero-Day Vulnerabilities Under Active Exploit Mr.Kurd 0 131 03-23-2020, 07:54 AM
Last Post: Mr.Kurd
Wink News Firefox 74 is out: Here are the key changes and features Mr.Kurd 0 162 03-11-2020, 06:57 AM
Last Post: Mr.Kurd
Exclamation News Vulnerabilities In Top Free Android VPN Apps Risk Over 120 Million Users Mr.Kurd 0 162 03-02-2020, 08:36 PM
Last Post: Mr.Kurd
Exclamation News Mozilla Firefox 73 Browser Update Fixes High-Severity RCE Bugs Mr.Kurd 0 202 02-12-2020, 09:10 PM
Last Post: Mr.Kurd
Heart News Critical RCE & Spoofing Vulnerabilities in Microsoft Azure Cloud Let Hackers Compromi Mr.Kurd 0 236 01-31-2020, 07:32 AM
Last Post: Mr.Kurd
  News Stop everything. Update Firefox now Mr.Kurd 1 262 01-09-2020, 05:06 PM
Last Post: Mr.Kurd
Exclamation News vBulletin releases patch update for new RCE and SQLi vulnerabilities Mr.Kurd 0 300 10-19-2019, 08:35 AM
Last Post: Mr.Kurd



Users browsing this thread: 1 Guest(s)