Mozilla.Firefox.WebIDL.Privileged.JavaScript.Injection
Description
This indicates an attack attempt to exploit a Code Injection Vulnerability in Multiple Mozilla product.
The vulnerability is due to an error when the vulnerable software handles a crafted JavaScript. An attacker can exploit this by tricking an unsuspecting user into visiting a malicious webpage and be granted admin privileges on the vulnerable application.
Affected Products
Mozilla Firefox 27.0.1 and prior version
Mozilla Thunderbird 24.3 and prior version
Mozilla SeaMonkey 2.24 and prior version
Mozilla Firefox ESR 24.3 and prior version
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apple the most recent upgrade or patch from the vendor.
https://www.mozilla.org/security/announce/2013/mfsa2014-29.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2020-09-30 | 16.934 | Name:Firefox. WebIDL. Privileged. JavaScript. Injection:Mozilla. Firefox. WebIDL. Privileged. JavaScript. Injection |