Firefox Zero-Day Exploited to Deliver Malware to Cryptocurrency Exchanges

Firefox Zero-Day Exploited to Deliver Malware to Cryptocurrency Exchanges

silversurfer Offline

Staff Member

Posts: 3,885
Threads: 3,283
Thanks Received: 5,064 in 3,838 posts
Thanks Given: 6,200
Joined: 12 September 18

21 June 19, 10:43

Quote:Mozilla Patches Second Firefox Zero-Day Used in Cryptocurrency Attacks

The flaw, tracked as CVE-2019-11708, has been described by Mozilla as a high-severity sandbox escape issue.

“Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the non-sandboxed parent process opening web content chosen by a compromised child process. When combined with additional vulnerabilities this could result in executing arbitrary code on the user's computer,” Mozilla said in its advisory

SOURCE: https://www.securityweek.com/mozilla-pat...cy-attacks

The following 1 user says Thank You to silversurfer for this post:
• harlan4096

Find

« Next Oldest | Next Newest »

Messages In This Thread

Firefox Zero-Day Exploited to Deliver Malware to Cryptocurrency Exchanges - by silversurfer - 20 June 19, 16:05

RE: Firefox Zero-Day Exploited to Deliver Malware to Cryptocurrency Exchanges - by silversurfer - 21 June 19, 10:43

View a Printable Version

Forum Jump:

Users browsing this thread: 1 Guest(s)

Welcome
You have to register before you can post on our site. Username/Email: Password: Remember me

Recent Posts
Linux 7.0 merges AMDGPU update for decad...
All thanks to Valv...harlan4096 — 17:55
AdGuard for iOS v4.5.16
AdGuard for iOS v4...harlan4096 — 07:24
QOwnNotes
26.2.9 Fixed a v...Kool — 05:38
AdGuard for Android 4.12.3
AdGuard for Androi...harlan4096 — 17:18
Replit Pro – One Month Free
Replit Pro C...hanso — 17:02

Birthdays
Today's Birthdays
No birthdays today.
Upcoming Birthdays
(46)dimaWeami
(44)Baihu

Online Staff
There are no staff members currently online.

Login
Username/Email:
Password:	Lost Password?
	Remember me