Intrusion Prevention

Mozilla.Firefox.Spidermonkey.Array.prototype.pop.Type.Confusion

Description

This indicates an attack attempt to exploit a Type Confusion vulnerability in Mozilla Firefox.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted web page. An attacker can exploit this by tricking an unsuspecting user into visiting a malicious web page and execute arbitrary code within the context of the application.

Affected Products

Mozilla Firefox ESR before 60.7.1
Mozilla Firefox before 67.0.3

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.mozilla.org/en-US/firefox/all/

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Status	Detail
2024-06-24	28.813	Modified	Sig Added
2021-02-01	17.008	Modified	Sig Added
2019-08-23	14.676	Modified	Default_action:pass:drop
2019-07-31	14.662	New

ID	48211
Created	Jul 31, 2019
Updated	Jun 24, 2024
CVE ID
Risk
Known Exploited	Yes
Exploit Prediction Score	84.43%
Default Action	drop
Active
Affected OS	All
Affected App	Mozilla
Profile Type	BufferErrors

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

Mozilla.Firefox.Spidermonkey.Array.prototype.pop.Type.Confusion

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

Mozilla.Firefox.Spidermonkey.Array.prototype.pop.Type.Confusion

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Threat Intelligence
Center