Lucene search
K

Mozilla Firefox Security Advisories (MFSA2020-50, MFSA2020-52) - Windows

🗓️ 18 Nov 2020 00:00:00Reported by Copyright (C) 2020 Greenbone AGType 
openvas
 openvas
🔗 plugins.openvas.org👁 22 Views

Mozilla Firefox Security Advisories, Multiple Vulnerabilities, Windows MFSA2020-50, MFSA2020-5

Related
Refs
Code
# SPDX-FileCopyrightText: 2020 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:mozilla:firefox";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.817841");
  script_version("2026-01-23T15:44:49+0000");
  # nb:
  # - CVE-2020-26954, CVE-2020-26955, CVE-2020-26957 and CVE-2020-26964 only affect Android
  # - CVE-2020-15999 only affect Android and Linux
  # - CVE-2020-26966 only affect Windows
  script_cve_id("CVE-2020-26951", "CVE-2020-26952", "CVE-2020-16012", "CVE-2020-26953",
                "CVE-2020-26956", "CVE-2020-26958", "CVE-2020-26959", "CVE-2020-26960",
                "CVE-2020-26961", "CVE-2020-26962", "CVE-2020-26963", "CVE-2020-26965",
                "CVE-2020-26966", "CVE-2020-26967", "CVE-2020-26968", "CVE-2020-26969");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2026-01-23 15:44:49 +0000 (Fri, 23 Jan 2026)");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2020-12-09 20:08:00 +0000 (Wed, 09 Dec 2020)");
  script_tag(name:"creation_date", value:"2020-11-18 18:10:44 +0530 (Wed, 18 Nov 2020)");
  script_name("Mozilla Firefox Security Advisories (MFSA2020-50, MFSA2020-52) - Windows");

  script_tag(name:"summary", value:"Mozilla Firefox is prone to multiple vulnerabilities.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present
  on the target host.");

  script_tag(name:"insight", value:"Multiple flaws exist due to:

  - Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code.

  - Out of memory handling of JITed, inlined functions could lead to a memory corruption.

  - Variable time processing of cross-origin images during drawImage calls.

  - Fullscreen could be enabled without displaying the security UI.

  - Local spoofing of web manifests for arbitrary pages in Firefox for Android.

  - XSS through paste (manual and clipboard API).

  - OneCRL was not working in Firefox for Android.

  - Requests intercepted through ServiceWorkers lacked MIME type restrictions.

  - Use-after-free in WebRequestService.

  - Potential use-after-free in uses of nsTArray.

  - Heap buffer overflow in freetype.

  - DoH did not filter IPv4 mapped IP Addresses.

  - Cross-origin iframes supported login autofill.

  - History and Location interfaces could have been used to hang the browser.

  - Software keyboards may have remembered typed passwords.

  - Single-word search queries were also broadcast to local network.

  - Mutation Observers could break or confuse Firefox Screenshots feature.

  - Memory safety bugs fixed.");

  script_tag(name:"impact", value:"Successful exploitation will allow attackers
  to bypass security, disclose sensitive information and run arbitrary code");

  script_tag(name:"affected", value:"Mozilla Firefox version before
  83 on Windows.");

  script_tag(name:"solution", value:"Update to Mozilla Firefox version 83
  or later, Please see the references for more information.");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"registry");
  script_xref(name:"URL", value:"https://www.mozilla.org/en-US/security/advisories/mfsa2020-50/");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2020 Greenbone AG");
  script_family("General");
  script_dependencies("gb_firefox_detect_win.nasl", "gb_firefox_detect_portable_win.nasl");
  script_mandatory_keys("Firefox/Win/Ver");
  exit(0);
}

include("host_details.inc");
include("version_func.inc");

if(!infos = get_app_version_and_location(cpe:CPE, exit_no_version:TRUE))
  exit(0);

vers = infos["version"];
path = infos["location"];

if(version_is_less(version:vers, test_version:"83")) {
  report = report_fixed_ver(installed_version:vers, fixed_version:"83", install_path:path);
  security_message(port:0, data:report);
  exit(0);
}

exit(99);

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation