Mozilla Patches Critical Code Execution Flaw in Firefox

Discussion in 'Tech news' started by silversurfer, Jan 31, 2018.

  1. silversurfer

    silversurfer Malware Tester Silver Member

    An update released this week by Mozilla for Firefox 58 patches a critical vulnerability that can be exploited by a remote attacker for arbitrary code execution.

    Mozilla developer Johann Hofmann discovered that arbitrary code execution is possible due to unsanitized output in the browser UI.

    The vulnerability, tracked as CVE-2018-5124, affects Firefox versions 56 through 58 and it has been fixed with the release of Firefox 58.0.1. According to Mozilla, Firefox for Android and Firefox 52 ESR are not impacted. Linux distributions have also started pushing out updated packages that include the fix.

    Source: http://www.securityweek.com/mozilla-patches-critical-code-execution-flaw-firefox
     
    Der.Reisende and RGiskardR like this.
  2. Google Adsense

Share This Page