BROWSER-FIREFOX Mozilla Firefox RemotePrompt sandbox escape attempt
This event is generated when an attacker attempts to exploit a sandbox escape vulnerability in Mozilla Firefox.
Attempted User Privilege Gain
This rule checks for attempts to exploit a sandbox escape vulnerability in Mozilla Firefox's RemotePrompt handler, which will allow the attacker to open additional web content in a privileged context. An attacker can exploit this vulnerability in combination with another Firefox vulnerability to achieve remote code execution on the victim's machine.
- Mozilla Firefox before 67.0.4
- Mozilla Firefox before ESR 60.7.2
Ease of attack
- Cisco Talos Intelligence Group