Resource management error in Mozilla Firefox - CVE-2020-26963
Published: November 17, 2020
Vulnerability identifier: #VU48468
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2020-26963
CWE-ID: CWE-399
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Mozilla
Affected software:
Mozilla Firefox
Mozilla Firefox
Detailed vulnerability description
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to improper management of internal resources. Repeated calls to the history and location interfaces could have been
used to hang the browser.
How to mitigate CVE-2020-26963
Install updates from vendor's website.