Jump to content

Update Your Browsers: "Bugs in Firefox, Chrome, Edge Allow Remote System Hijacking"


Recommended Posts

Posted

More bugs! Fortunately, these have been identified and patches are available, so be sure to update all your browsers. A few details (link to source below):

Quote

Critical Firefox Use-After-Free Bug

On Thursday, the Cybersecurity and Infrastructure Security Agency (CISA) urged users of Mozilla Foundation’s Firefox browser to patch a bug, tracked as CVE-2020-16044, and rated as critical. The vulnerability is classified as a use-after-free bug and tied to the way Firefox handles browser cookies and if exploited allows hackers to gain access to the computer, phone or tablet running the browser software.

Impacted are Firefox browser versions released prior to the recently released Firefox desktop 84.0.2, Firefox Android 84.1.3 edition and also Mozilla’s corporate ESR 78.6.1 version of Firefox.

“A malicious peer could have modified a COOKIE-ECHO chunk in a SCTP packet in a way that potentially resulted in a use-after-free. We presume that with enough effort it could have been exploited to run arbitrary code,” according to a Mozilla security bulletin posted Thursday.

Chromium Browser Bug Impacts Chrome and Edge

Also on Thursday, CISA urged Windows, macOS and Linux users of Google’s Chrome browser to patch an out-of-bounds write bug (CVE-2020-15995) impacting the current 87.0.4280.141 version of the software. The CISA-bug warning stated that the update to the latest version of the Chrome browser would “addresses vulnerabilities that an attacker could exploit to take control of an affected system.”

Because Microsoft’s latest Edge browser is based on Google Chromium browser engine, Microsoft also urged its users to update to the latest 87.0.664.75 version of its Edge browser.

More Chromium Bugs Impact Chrome and Edge

Twelve additional bugs were reported by Google, impacting its Chromium browser engine. Both Google and Microsoft featured the same list of vulnerabilities...

 

https://threatpost.com/firefox-chrome-edge-bugs-system-hijacking/162873/

  • Like 1
Posted
27 minutes ago, techietraveller84 said:

More bugs! Fortunately, these have been identified and patches are available, so be sure to update all your browsers. A few details (link to source below):

 

https://threatpost.com/firefox-chrome-edge-bugs-system-hijacking/162873/

Thanks

 

And in case you are suspicious about security advices with "click here" just google "CVE-2020-16044". It's real.

 

  • Like 1
  • Thanks 1

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.



×
×
  • Create New...