Best News Network

India’s cyber agency now warns about bugs in Mozilla Firefox browser | Digit

New Delhi, Aug 31 (IANS) After warning users about bugs in Google Chrome for desktop, the Indian Computer Emergency Response Team (CERT-In) has now cautioned against multiple vulnerabilities in Mozilla Firefox products that can let hackers compromise devices and systems.

The bugs in Mozilla Firefox browser could allow a remote attacker to bypass security restrictions, execute arbitrary code and cause denial of service attack on the targeted system, CERT-In said in its latest advisory.

“These vulnerabilities exist in Mozilla Firefox due to abuse of XSLT error handling, cross-origin iframe referencing an XSLT document… that results in a use-after-free error and memory safety bugs within the browser engine,” explained the cyber agency.

A remote attacker could exploit these vulnerabilities by convincing a victim to open a specially-crafted web request.

CERT-In, which comes under the IT Ministry, advised users to update to the latest Mozilla Firefox versions.

CERT-In also found a vulnerability in open source coding platform Drupal which could allow an attacker to bypass security restrictions on the targeted system.

“Successful exploitation of this vulnerability could allow an attacker to bypass security restrictions (leak valid payment details and accept invalid payment details) on the targeted system,” it warned.

Last week, the cyber agency had warned users about multiple vulnerabilities in Google Chrome for desktop that could let threat actors gain access to their computers.

(Except for the headline, the rest of this IANS article is un-edited)

For more technology news, product reviews, sci-tech features and updates, keep reading Digit.in

Stay connected with us on social media platform for instant update click here to join our  Twitter, & Facebook

We are now on Telegram. Click here to join our channel (@TechiUpdate) and stay updated with the latest Technology headlines.

For all the latest Technology News Click Here 

 For the latest news and updates, follow us on Google News

Read original article here

Denial of responsibility! NewsAzi is an automatic aggregator around the global media. All the content are available free on Internet. We have just arranged it in one platform for educational purpose only. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, all materials to their authors. If you are the owner of the content and do not want us to publish your materials on our website, please contact us by email – [email protected]. The content will be deleted within 24 hours.