KLA10969Multiple vulnerabilities in Mozilla Firefox and Mozilla Firefox ESR

2017-03-07T00:00:00
ID KLA10969
Type kaspersky
Reporter Kaspersky Lab
Modified 2020-06-18T00:00:00

Description

Detect date:

03/07/2017

Severity:

Critical

Description:

Multiple serious vulnerabilities have been found in Mozilla Firefox and Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to obtain sensitive information, run arbitrary code, cause a denial of service and gain privileges.

Affected products:

Mozilla Firefox versions earlier than 52.0
Mozilla Firefox ESR versions earlier than 45.8.0

Solution:

Update to latest version
Mozilla Firefox ESR
Mozilla Firefox

Original advisories:

MFSA 2017-05
MFSA 2017-06

Impacts:

ACE

Related products:

Mozilla Firefox

CVE-IDS:

CVE-2017-54067.5Critical
CVE-2017-54076.5High
CVE-2017-54109.8Critical
CVE-2017-54117.5Critical
CVE-2017-54085.3High
CVE-2017-54127.5Critical
CVE-2017-54139.8Critical
CVE-2017-54145.5High
CVE-2017-54167.5Critical
CVE-2017-54257.5Critical
CVE-2017-54265.3High
CVE-2017-54185.3High
CVE-2017-54197.5Critical
CVE-2017-54055.3High
CVE-2017-54217.5Critical
CVE-2017-54227.5Critical
CVE-2017-53999.8Critical
CVE-2017-53989.8Critical
CVE-2017-54009.8Critical
CVE-2017-54019.8Critical
CVE-2017-54029.8Critical
CVE-2017-54039.8Critical
CVE-2017-54049.8Critical
CVE-2017-54095.5High
CVE-2017-54155.3High
CVE-2017-54175.3High
CVE-2017-54275.5High
CVE-2017-54206.5High

Exploitation:

The following public exploits exists for this vulnerability: