Intrusion Prevention

Mozilla.Firefox.IP.Address.Same.Origin.Policy.Bypass

Description

This indicates an attack attempt to exploit a Same Origin Policy Bypass vulnerability in Firefox.
The vulnerability is due to an error when the vulnerable software attempts to handle a maliciously crafted webpage. An attacker can exploit this by tricking a user into visiting a malicious webpage and execute arbitrary script code within the context of the application.

Affected Products

Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4

Impact

System Compromise: Remote attackers can execute arbitrary script code within the context of the target user's browser.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.mozilla.org/en-US/security/advisories/mfsa2015-122/

CVE References

CVE-2015-7188