New Delhi, Aug 31 : After warning users of vulnerabilities in Google Chrome for desktops The Indian Computer Emergency Response Team (CERT-In) has issued a warning against a variety of weaknesses in Mozilla Firefox products that can allow hackers to hack into the systems and devices of users.The vulnerabilities in Mozilla Firefox browser could allow remote attackers to circumvent security restrictions and execute arbitrary code, which could cause a denial of service attacks on the system targeted, CERT-In said in its latest advisory.
“These security holes exist in Mozilla Firefox due to the misuse of XSLT error handling, cross-origin Iframes that reference an XSLT document.which results in an error indicating use-after-free and memory safety vulnerabilities within the browser’s engine,”” said the agency.
An intruder could exploit these weaknesses by persuading a victim make a web request that is specially designed.
CERT-In, which falls under the IT Ministry, advised users to upgrade to the most recent Mozilla Firefox versions.
CERT-In also discovered a security hole in the open source programming platform Drupal that could allow an attacker to circumvent security controls on the system being targeted.
“Successful exploit of the vulnerability may allow an attacker to circumvent security restrictions (leak legitimate payment details and accept payment information that is invalid) on the system being targeted,” it warned.
The cyber agency warned users about several security holes in Google Chrome for desktop that could allow adversaries to access their personal computers.
na/
