Security News > 2020 > March > Firefox Bug Opens iPhone AirPods to Third-Party Snooping

Firefox Bug Opens iPhone AirPods to Third-Party Snooping
2020-03-10 18:14

Five high-severity bugs were fixed in the Firefox web browser with the release of version 74 by the Mozilla Foundation on Tuesday.

In total, 12 bugs were patched with six rated as moderate severity and one low-severity bug.

This browser update shared four of the high-severity bug fixes and three medium severity bug patches.

"Some of these bugs showed evidence of memory corruption or escalation of privilege and we presume that with enough effort some of these could have been exploited to run arbitrary code," conferred Mozilla describing the memory and script safety bugs fixed in Firefox 74.

Another interesting bug, tracked as CVE-2020-6810 and rated medium severity, can be abused by a malicious website that tricks users into opening a dangerous popup that mimics the browser in full-screen mode.


News URL

https://threatpost.com/firefox-bug-opens-airpods-to-snooping/153569/?utm_source=rss&utm_medium=rss&utm_campaign=firefox-bug-opens-airpods-to-snooping

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2020-03-25 CVE-2020-6810 Authentication Bypass by Spoofing vulnerability in Mozilla Firefox
After a website had entered fullscreen mode, it could have used a previously opened popup to obscure the notification that indicates the browser is in fullscreen mode.
network
mozilla CWE-290
4.3
4.3