1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Mozilla Firefox CVE-2019-9810 Activity

Web Attack: Mozilla Firefox CVE-2019-9810 Activity

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects the attempt to execute arbitrary code in the context of the browser, gain elevated privileges, or cause denial-of-service conditions.

Additional Information

Firefox is a browser and available for multiple platforms.

Incorrect alias information in IonMonkey JIT compiler for Array.prototype.slice method may lead to missing bounds check and a buffer overflow. The attacker can then execute arbitrary code in the context of the browser, gain elevated privileges, or cause denial-of-service conditions.

Affected

  • Firefox before 66.0.1, Firefox ESR before 60.6.1, and Thunderbird before 60.6.1.

Response


  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube