India’s cyber agency now warns of Mozilla Firefox browser bugs
New Delhi, August 31 (IANS) After notifying users about bugs in Google Chrome for desktop, India’s Computer Emergency Response Team (CERT-In) has warned of multiple vulnerabilities in Mozilla Firefox products that can allow hackers to compromise the devices and systems.
Mozilla Firefox browser bugs could allow a remote attacker to bypass security restrictions, execute arbitrary code, and cause a denial of service attack on the targeted system, CERT-In said in its latest advisory.
“These vulnerabilities exist in Mozilla Firefox due to abuse of XSLT error handling, cross-origin iframe referencing an XSLT document… which results in use-after-free error, and security bugs in the memory in the browser engine,” the cyber agency explained. .
A remote attacker could exploit these vulnerabilities by tricking a victim into opening a specially crafted web request.
CERT-In, which falls under the Department of Computing, advised users to update to the latest versions of Mozilla Firefox.
CERT-In also discovered a vulnerability in the open-source coding platform Drupal that could allow an attacker to bypass security restrictions on the targeted system.
Successful exploitation of this vulnerability could allow an attacker to bypass security restrictions (disclose valid payment details and accept invalid payment details) on the targeted system.
Last week, the cyber agency warned users about multiple vulnerabilities in Google Chrome for desktop that could allow hackers to gain access to their computers.
(Except for the title, the rest of this IANS article is unedited)
For more technology news, product reviews, features, and science updates, keep reading Digit.in