Wednesday, November 30, 2016

Mozilla Patches SVG Animation Remote Code Execution in Firefox and Thunderbird

If you're reading the news lately, you might have stumbled on an article that talked about a 0-day vulnerability in the Mozilla Firefox web browser, which could be used to attack Tor users running Tor Browser on Windows systems.

The vulnerability was, in fact, an use-after-free in Firefox's SVG Animation code, but it looks like security researchers recently discovered that an exploit could have been built on this security flaw to target Windows users using either Mozilla Firefox or Tor Browser web browsers on the anonymous Tor network.

"A use-after-free vulnerability in SVG Animation has been discovered. An exploit built on this vulnerability has been discovered in the wild targeting Firefox and Tor Browser users on Windows," reads Mozilla Foundation Security Advisory 2016-92, and the issue has been documented by Mozilla as CVE... (read more)

from Softpedia News / Linux http://ift.tt/2fH2eFb
via IFTTT
at
Labels: ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Playing Grand Theft Auto Inside A Neural Network’s Hallucination? It’s Possible!

Ever imagined what a Neural Network's hallucination would look like? The post Playing Grand Theft Auto Inside A Neural Network’s Halluc...