Firefox XMLSerializer Use After Free Vulnerability

This Metasploit module exploits a vulnerability found on Firefox 17.0 'Firefox XMLSerializer Use After Free', 'Description' = %q This module exploits a vulnerability found on Firefox 17.0 MSFLICENSE, 'Author' = 'regenrecht', Vulnerability Discovery, Analysis and PoC...

Firefox onreadystatechange Event DocumentViewerImpl Use After Free

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Firefox...

nss, nss-util, and nspr security, bug fix, and enhancement update

nspr 4.9.2-0.1 - Retagging to ensure n-v-r is lower than the one for rhel-6.4 - Resolves: rhbz891661 - RFE Rebase nspr to 4.9.2 due to Firefox 17 ESR 4.9.2-1 - Resolves: rhbz891661 - RFE Rebase nspr to 4.9.2 due to Firefox 17 ESR nss 3.13.6-2.0.1.el63 - Added nss-vendor.patch to change vendor...

Mozilla Firefox新标签页特权提升漏洞(CVE-2012-4203)

Mozilla Firefox是Mozilla所发布的WEB浏览器。 如果从Firefox "new tab"页列表中选择URL，脚本会继承"new tab"页的权限，攻击者构建恶意WEB页，诱使用户保存一个使用恶意javascript: URL的书签，可执行本地安装的程序。 0 Mozilla Firefox 17 厂商解决方案 Mozilla Firefox 17已经修复此漏洞，建议用户下载使用： http://www.mozilla.org/...

Mozilla Releases Firefox 17 with Click-to-Play, Updates Firefox for Android

Mozilla pushed out the latest build of its flagship browser, Firefox 17, today, adding a new click-to-play blocklisting feature that will help prevent users from running out-of-date or vulnerable versions of plug-ins or extensions. The update tweaks click-to-play in Firefox prompting users to...