Rewterz Threat Advisory – CVE-2019-17026 – Mozilla Firefox Actively Exploited Zero-Day Vulnerability

Thursday, January 9, 2020

Severity

High

Analysis Summary

Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion.

Impact

Execute code or trigger crashes on machines running vulnerable Firefox versions.

Affected Vendors

Mozilla

Affected Products

  • Firefox
  • Firefox ESR

Remediation

Update to version

  • Firefox 72.0.1
  • Firefox ESR 68.4.1

Data Sheets

Corporate Brochure


Our Story


Services


Solutions


Managed Security


Upcoming Rewterz Trainings/Events

Rewterz News

  • 10, January 2020 Rewterz Threat Advisory – CVE-2020-1600 – Juniper Networks Junos OS Denial of Service in the RPD daemon
  • 10, January 2020 Rewterz Threat Alert – Bank of America Phishing Campaign
  • 10, January 2020 Rewterz Threat Alert – LiquorBot Botnet
  • 10, January 2020 Rewterz Threat Advisory – CVE-2019-16005 – Cisco Webex Video Mesh Node Command Injection Vulnerability

Copyright © Rewterz. All rights reserved.