CVE-2022-22753 - Escalating to SYSTEM on Windows via Firefox Maintenance Service TOCTOU Bug
In early 2022, Mozilla fixed a critical security vulnerability — CVE-2022-22753 — that let crafty attackers exploit a Time-of-Check Time-of-Use (TOCTOU) bug in the Firefox Maintenance Service
CVE-2022-22764 - Understanding The Firefox Memory Safety Vulnerability (with Exploit Details)
In early 2022, Mozilla disclosed a memory safety vulnerability—CVE-2022-22764—that was discovered in Firefox, Thunderbird, and Firefox ESR. The people behind this find were
CVE-2022-0511 - How Memory Safety Bugs in Firefox <97 Could Let Attackers Run Code
In early 2022, Mozilla patched serious memory safety bugs in Firefox found by brilliant Mozilla developers and community contributors: Gabriele Svelto, Sebastian Hengst, Randell Jesup,
CVE-2022-26386 - How a Change in Firefox’s Temporary Download Directory Threatened Your Privacy
In early 2022, a subtle but critical change in how Firefox for macOS and Linux handled temporary file downloads opened a door to local privilege
CVE-2022-1097 - Dangerous `NSSToken` Use-After-Free in Firefox & Thunderbird Explained
In March 2022, a serious security flaw was found in Mozilla’s browser and email applications: Firefox, Firefox ESR, and Thunderbird. Called CVE-2022-1097, this bug
Episode
00:00:00
00:00:00