Mozilla Firefox could allow a remote malicious user to execute arbitrary code on the system, caused by a type confusion in IonMonkey JIT compiler due to “incorrect alias information for setting array elements. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability using unknown attack vectors to execute arbitrary code on the vulnerable system or cause a denial of service.
Mozilla has rolled out a new version of its Firefox web browser to address a critical zero-day vulnerability that has been abused for targeted attacks.
A warning from the United St...
Mozilla patched a critical vulnerability actively being exploited in the wild with its latest update to the Firefox browser.
Mozilla said in a security bulletin Wednesday that it was “aware of targeted attacks in the wild that were abusing the flaw. A successful attack “could make it possible for attackers who successfully exploit it to abuse affected systems,” according to Mozilla.
The disclosure came a day after Mozilla released its latest Firefox 72 browser on ...