A remote code execution in Firefox caused by the expiration of certificate pins was patched by Mozilla in Firefox 49 and Firefox ESR 45.4.
Tag Archives: Mozilla
Mozilla Patching Firefox Certificate Pinning Vulnerability
Mozilla is expected tomorrow to patch a critical certificate pinning vulnerability in Firefox’s automated update process for extensions.
Browser Address Bar Spoofing Vulnerability Disclosed
Chrome, Firefox and likely other major browsers are afflicted by a vulnerability that allows attackers to spoof URLs in the address bar.
Firefox to Block Flash in August, Disable in 2017
Starting next year, Firefox users who navigate to pages that contain Flash will be asked their consent before activating the plugin. The move, long expected, comes as developers seek to curb usage of Flash in everyday web browsing.
Selfrando Technique Mitigates Attacks Unmasking Tor Users
A team of academics and researchers has developed a technique called selfrando that it says can defend against attacks that unmask users of the Tor Network.
Firefox 47 Fixes 13 Vulnerabilities, Removes Click-To-Activate Plugin Whitelist
Mozilla fixed 13 security issues, including two critical vulnerabilities that could have led to spoofing and clickjacking, among other issues, when it updated Firefox to the latest build, Firefox 47, this week.
Threatpost News Wrap, May 13, 2016
Mike Mimoso and Chris Brook discuss the news of the week, including zero day vulnerabilities–both in Adobe Flash and Windows, a nasty vulnerability in SAP business applications, Mozilla asking FBI to disclose a Tor exploit, and more.
Motion Filed Asking FBI To Disclose Tor Browser Zero Day
Mozilla filed a motion asking the courts to compel the government to turn over details on a zero-day vulnerability in the Tor Browser used to hack visitors to a child pornography website.
Firefox 46 Patches Critical Memory Vulnerabilities
Mozilla released Firefox 46, which includes patches for one critical and four high-severity vulnerabilities, all of which can lead to remote code execution.
Firefox 45 Fixes 40 Vulnerabilities, 22 Critical
Mozilla released a new version of Firefox on Tuesday, fixing 40 vulnerabilities across the browser.