Mozilla.Firefox.SOP.Bypass.Information.Disclosure
Description
This indicates an attack attempt to exploit an Information Disclosure Vulnerability in Mozilla Firefox.
The vulnerability is due to an error in the vulnerable application when handling a maliciously crafted HTML file. An attacker can exploit this to disclose sensitive information on the affected machine via a crafted HTML file.
Affected Products
Mozilla Firefox ESR prior to 60.8
Mozilla Firefox prior to 68
Mozilla Thunderbird prior to 60.8
Impact
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://www.mozilla.org/security/advisories/mfsa2019-21/
https://www.mozilla.org/security/advisories/mfsa2019-22/
https://www.mozilla.org/security/advisories/mfsa2019-23/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |