Mozilla Issues Security Updates for Firefox, Firefox ESR

By Marcos Colon

Of the bugs remedied by the company, five were rated as critical which if leveraged “can be used to run attacker code and install software, requiring no user interaction beyond normal browsing,” according to the security advisories for Firefox 51 and Firefox ESR 45.7.

The applications shared a few critical bugs which Mozilla was able to address simultaneously. One of the common critical vulnerabilities is CVE-2017-5375, which allows an attacker to bypass Address Space Layout Randomization and Data Executive Prevention security features.

Two other two critical bugs shared by the applications, CVE-2017-5376 and CVE-2017-5374, could result in use-after-free in XSL and memory corruption problems.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.