Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Mozilla patches Firefox zero-day exploited in the wild.

Mozilla patches Firefox zero-day exploited in the wild.

2015/08/07

Securityweek - (International) Mozilla released Firefox version 39.0.3 to address a zero-day vulnerability in the browser's mechanism that enforces JavaScript's same origin policy and Firefox's PDF Viewer, in which an attacker can inject a JavaScript payload to steal local files containing sensitive information. The attack was observed being exploited in the wild, targeting certain types of files hosted on Windows and Linux systems.

Source: http://www.securityweek.com/mozilla-patches-firefox-zero-day-exploited-wild

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:24:57