Security News > 2016 > September > Mozilla Patches Certificate Pinning Vulnerability in Firefox (Threatpost)

Mozilla Patches Certificate Pinning Vulnerability in Firefox (Threatpost)

2016-09-21 12:58

A remote code execution in Firefox caused by the expiration of certificate pins was patched by Mozilla in Firefox 49 and Firefox ESR 45.4.

News URL

http://threatpost.com/mozilla-patches-certificate-pinning-vulnerability-in-firefox/120747/

#firefox #mozilla #vulnerability #certificate #threatpost

Related news

Mozilla warns users to update Firefox before certificate expires (source)
Mozilla Patches Critical Firefox Bug Similar to Chrome’s Recent Zero-Day Vulnerability (source)
Mozilla Updates Firefox Terms Again After Backlash Over Broad Data License Language (source)
Mozilla Revises Firefox Terms of Use After Inflaming Users Over Data Usage (source)
WARNING: Expiring Root Certificate May Disable Firefox Add-Ons, Security Features, and DRM Playback (source)
Mozilla warns Windows users of critical Firefox sandbox escape flaw (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Mozilla		29	14	638	592	271	1515

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.