1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Mozilla Firefox CVE-2019-11697

Web Attack: Mozilla Firefox CVE-2019-11697

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects the attempt to bypass certain security restrictions to perform unauthorized actions, crash the application, execute arbitrary code or obtain sensitive information. Failed exploit attempts will likely result in denial-of-service conditions.

Additional Information

Firefox is a browser and available for multiple platforms.

Mozilla Firefox is prone to the following security vulnerabilities:

1. A security-bypass vulnerability. Specifically, this issue occurs because a custom cursor defined by scripting can position itself over the addressbar to spoof the actual cursor when it should not be allowed. [CVE-2019-11695]

2. A security vulnerability. Specifically, this issue occurs because '.JNLP' extensions files for 'Java web start' applications are not treated as executable content. This may allow attacker to mistakenly launch an executable binary locally. [CVE-2019-11696]

3. A security-bypass vulnerability. Specifically, this issue occurs when the key 'ALT' and 'a' is pressed, it will install the extension without the install prompt delay and that keeps the prompt visible to accept or decline installation by the user. [CVE-2019-11697]

4. A address bar spoofing vulnerability. Specifically, this issue occurs because it highlights the wrong domain name in the addressbar during page navigation. [CVE-2019-11699]

5. An arbitrary file-access vulnerability. An attacker can exploit this issue by using a hyperlink that uses the 'res:' protocol to open files at known location in Internet Explorer. [CVE-2019-11700]

Note: This issue only affects Windows.

6. A security vulnerability. Specifically, this issue occurs because default 'webcal:' protocol loads a website that is vulnerable cross-site scripting attacks. [CVE-2019-11701]

7. A security vulnerability. Specifically, these issues occur because of memory safety bugs. An attacker can exploit this issue to corrupt the memory and execute arbitrary code. [CVE-2019-9814]

8. A denial-of-service vulnerability that occurs due to a use-after-free error. Specifically, this issue affects the 'AssertWorkerThread' function. An attacker can exploit this issue to cause a crash. [CVE-2019-9821]

Attackers can exploit these issues to bypass certain security restrictions to perform unauthorized actions, crash the application, execute arbitrary code or obtain sensitive information. Failed exploit attempts will likely result in denial-of-service conditions.

Affected

  • Mozilla Firefox versions prior to 67
  • Mozilla Firefox ESR versions prior to 60.7
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube