[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Privilege escalation vulnerability in Mozilla Firefox - CVE-2019-11761

ID: oval:org.secpod.oval:def:59331Date: (C)2019-10-23   (M)2024-03-27
Class: VULNERABILITYFamily: windows




Mozilla Firefox 70, Mozilla Firefox ESR 68.2 and Mozilla Thunderbird 68.2: By using a form with a data URI it was possible to gain access to the privileged codeJSONView/code object that had been cloned into content. Impact from exposing this object appears to be minimal, however it was a bypass of existing defense in depth mechanisms.

Platform:
Microsoft Windows Server 2022
Microsoft Windows 11
Microsoft Windows 7
Microsoft Windows 8.1
Microsoft Windows 10
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Product:
Mozilla Firefox
Mozilla Firefox ESR
Mozilla Thunderbird
Reference:
CVE-2019-11761
CVE    1
CVE-2019-11761
CPE    6
cpe:/a:mozilla:firefox_esr
cpe:/a:mozilla:firefox_esr:::x64
cpe:/a:mozilla:firefox_esr:::x86
cpe:/a:mozilla:firefox:::x64
...

© SecPod Technologies