#VU26650 Out-of-bounds write in Mozilla Firefox


Published: 2020-04-07

Vulnerability identifier: #VU26650

Vulnerability risk: High

CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-6822

CWE-ID: CWE-787

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Mozilla Firefox
Client/Desktop applications / Web browsers

Vendor: Mozilla

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary condition in GMPDecodeData when processing images larger than 4Gb on 32-bit builds. A remote attacker can create a specially crafted image, trick the victim into opening it, trigger out-of-bounds write and execute arbitrary code on the target system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Mozilla Firefox: 60.0 - 74.0.1

External links
http://www.mozilla.org/en-US/security/advisories/mfsa2020-12/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


CentOS 7 update for thunderbird
CentOS 6 update for firefox
CentOS 6 update for thunderbird
Gentoo update for Mozilla Firefox
OpenSUSE Linux update for MozillaThunderbird
Ubuntu update for Thunderbird
Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions update for thunderbird
Red Hat Enterprise Linux 8 update for thunderbird
Red Hat Enterprise Linux 6 update for firefox
Red Hat Enterprise Linux 6 update for thunderbird