Mozilla.Firefox.onreadystatechange.Event.Remote.Code.Execution
Description
This indicates an attack attempt a remote Code Execution vulnerability in Mozilla Firefox.
The vulnerability is caused by an error due to the way the vulnerable software handles 'onreadystatechange' events. A attacker can trick an unsuspecting user into visiting a malicious webpage and execute arbitrary code within the context of the application.
Affected Products
Mozilla Firefox prior to ESR 17.0.7
Mozilla Firefox prior to version 22
Impact
System Compromise: Remote attackers can execute arbitrary script code within the context of the application.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
http://www.mozilla.org
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |