November 29, 2022

When accessing the internet, do you use Mozilla Firefox? If so, you shouldn’t disregard the government advisory that was released. The web browser contains several security holes, according to the Indian Computer Emergency Response Team (CERT-IN), a key body of the Ministry of Electronics and Information Technology.

According to the advice, Mozilla Firefox versions older than 105 and ESR versions older than 102.3 are both impacted. The government has cautioned that multiple vulnerabilities have been reported in Mozilla Firefox, which could be exploited by a remote attacker to bypass security restrictions, execute arbitrary code, and reveal sensitive information on the targeted system. This advisory from the government has a high severity rating.

According to the advisory, “These bugs exist in Mozilla Firefox due to memory safety bugs in the browser engine, bypass of FeaturePolicy restrictions on transient pages, Data Race while parsing non-UTF8 URLs in threads, bypass of secure context restriction for cookiesHost and _Secure prefix, stack buffer outflow while initializing graphics, content security policy base-uri bypass, and incoherent instruction cache while building WAS on ARM64.

Upgrading to Mozilla Firefox 105 and Mozilla Firefox ESR version 102.3 has been suggested by the CERT-In.
When the source code for the Netscape browser was made available in 1998, the Mozilla project was born. On the corporate website, it is stated that Firefox 1.0, which was introduced in 2004, was a huge success, receiving over 100 million downloads in less than a year. Firefox OS was introduced by the firm in 2013 in an effort to “unleash the full power of the web on smartphones and once again offer control and choice to a new generation of people going online.”

See also  Elon Musk accuses Twitter of security flaws in court filing