BROWSER-FIREFOX -- Snort has detected traffic known to exploit vulnerabilities present in the Firefox browser, or products that have the "Gecko" engine (Thunderbird email client, etc.).
BROWSER-FIREFOX Mozilla Firefox potential use after free attempt
This rule will alert on potential attempts to exploit a use after free in Mozilla Firefox's JavaScript engine. Specifically, it will look for the manipulation of vulnerable "ContentViewer", "nsDocShell", and "ReadableStream" objects that if exploited successfully can lead to use after free conditions.
This rule fires on potential attempts to exploit a use after free vulnerability in Mozilla Firefox.
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2020-6819 |
Loading description
|
CVE-2020-6820 |
Loading description
|
Tactic: Initial Access
Technique: Drive-by Compromise
For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org