BROWSER-FIREFOX -- Snort has detected traffic known to exploit vulnerabilities present in the Firefox browser, or products that have the "Gecko" engine (Thunderbird email client, etc.).
BROWSER-FIREFOX Mozilla Firefox potential use after free attempt
This rule will alert on potential attempts to exploit a use after free in Mozilla Firefox's JavaScript engine. Specifically, it will look for the manipulation of vulnerable "ContentViewer", "nsDocShell", and "ReadableStream" objects that if exploited successfully can lead to use after free conditions.
This rule fires on potential attempts to exploit a use after free vulnerability in Mozilla Firefox.
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2020-6819Under certain conditions, when running the nsDocShell destructor, a race condition can cause a use-after-free. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Thunderbird < 68.7.0, Firefox < 74.0.1, and Firefox ESR < 68.6.1. |
|
|||||||||||||||||||||||||||||||
CVE-2020-6820Under certain conditions, when handling a ReadableStream, a race condition can cause a use-after-free. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Thunderbird < 68.7.0, Firefox < 74.0.1, and Firefox ESR < 68.6.1. |
|
|||||||||||||||||||||||||||||||
©2023 Cisco and/or its affiliates. Snort, the Snort and Pig logo are registered trademarks of Cisco. All rights reserved.
