Remote code execution vulnerability in Firefox, Firefox ESR, and Thunderbird
Source: Heise.de added 10th Nov 2020
Attackers could attack Firefox, Firefox ESR and Thunderbird with malicious code. Versions secured against this are already available for download.
Mozilla has the security vulnerability (CVE – 2020 – 26950) classified with the threat level ” critical “. There is hardly any information about the vulnerability in a warning message. The error should be found in the component MCallGetProperty opcode.
Under unspecified circumstances, attackers could exploit this to cause a memory error (use-after-free) to provoke. This is often the starting point for the execution of malicious code.
Update now Security researchers have found the hole discovered at the Chinese hacking competition Tianfu Cup 2020. Mozilla states the vulnerability in the versions Firefox 82. 0.3 , Firefox ESR 78. 4.1 and Thunderbird 78. 4.2 to have closed.
(of)
brands: ESR media: Heise.de keywords: Memory
Related posts
Notice: Undefined variable: all_related in /var/www/vhosts/rondea.com/httpdocs/wp-content/themes/rondea-2-0/single-article.php on line 88
Notice: Undefined variable: all_related in /var/www/vhosts/rondea.com/httpdocs/wp-content/themes/rondea-2-0/single-article.php on line 88
Related Products
Notice: Undefined variable: all_related in /var/www/vhosts/rondea.com/httpdocs/wp-content/themes/rondea-2-0/single-article.php on line 91
Warning: Invalid argument supplied for foreach() in /var/www/vhosts/rondea.com/httpdocs/wp-content/themes/rondea-2-0/single-article.php on line 91