Security News > 2016 > December > Actively exploited Firefox, Tor Browser 0-day patched, update now! (Help Net Security)
2016-12-01 15:48
Mozilla and the Tor Project have released security updates that fix the Firefox 0-day flaw that was spotted being exploited to de-anonymize Tor Browser users. It is still unknown who started wielding the exploit initially, although it’s similarity to a previous one used by the FBI in 2013 to target users of hidden services seems to point in that direction. The vulnerability (CVE-2016-9079) affects SVG Animation module in Firefox and in Tor Browser, since the … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/OZGEMTDf1zo/
Related news
- 0.0.0.0 Day: 18-Year-Old Browser Vulnerability Impacts MacOS and Linux Devices (source)
- 18-year-old security flaw in Firefox and Chrome exploited in attacks (source)
- “0.0.0.0-Day” vulnerability affects Chrome, Safari and Firefox (source)
- Tails OS merges with Tor Project for better privacy, security (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-11 | CVE-2016-9079 | Use After Free vulnerability in multiple products A use-after-free vulnerability in SVG Animation has been discovered. | 5.0 |