Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Mozilla patches Firefox zero-day exploited in the wild.

Mozilla patches Firefox zero-day exploited in the wild.


Securityweek - (International) Mozilla released Firefox version 39.0.3 to address a zero-day vulnerability in the browser's mechanism that enforces JavaScript's same origin policy and Firefox's PDF Viewer, in which an attacker can inject a JavaScript payload to steal local files containing sensitive information. The attack was observed being exploited in the wild, targeting certain types of files hosted on Windows and Linux systems.


Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at:

Last Updated: 27 May 2016 10:24:57