Closed Bug 1435259 Opened 7 years ago Closed 7 years ago

All Mozilla Firefox Versions befor 58.0.1 are prone for malicious code execution on prepared websites!

Categories

(Firefox :: Untriaged, defect)

Product:
Firefox
Component:
Untriaged
Version:
58 Branch
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED INVALID

People

(Reporter: edv, Unassigned)

Details

User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0 Build ID: 20170527030316 Steps to reproduce: All Mozilla Firefox Versions befor 58.0.1 are prone for malicious code execution on prepared websites! On Apple macOS, GNU/Linux and also Microsoft Windows. You may read the following Page: https://www.bsi-fuer-buerger.de/SharedDocs/Warnmeldungen/DE/TW/2018/01/warnmeldung_tw-t18-0018.html https://twitter.com/BSI_Presse/status/958735377719738368?ref_src=twsrc%5Etfw&ref_url=https%3A%2F%2Fwww.computerbase.de%2F2018-02%2Fsicherheitsluecke-firefox-vor-5801%2F Actual results: You got some Maleware installed/executed. Expected results: This Code should not run manuel without your permission.
There's nothing actionable in this bug report. The vulnerability in question is patched since 58.0.1. ESR 52 and Android are unaffected, and therefore don't need to be patched. https://www.mozilla.org/en-US/security/advisories/mfsa2018-05/
Status: UNCONFIRMED → RESOLVED
Has Regression Range: --- → irrelevant
Has STR: --- → irrelevant
Closed: 7 years ago
Resolution: --- → INVALID
You need to log in before you can comment on or make changes to this bug.