CVE-2019-11707

CVSS 8.8 HIGHEPSS 38.0%● KEVCWE-843

In short

A flaw in how Firefox handles JavaScript array operations can cause the browser to crash unexpectedly. Attackers can exploit this to crash your browser, potentially as part of a targeted attack.

Technical detail

Type confusion vulnerability in Array.pop manipulation allowing memory corruption due to improper object handling. Attack vector is JavaScript execution in web content; requires user to visit malicious page. Leads to exploitable crash (DoS or potential code execution).

Summary generated and translated by AI from the official description.

A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR < 60.7.1, Firefox < 67.0.3, and Thunderbird < 60.7.2.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

Mozilla · Firefox Mozilla · Firefox ESR Mozilla · Thunderbird

public PoCs found — 5

githubgithub.com/vigneshsrao/CVE-2019-11707★ 42 githubgithub.com/flabbergastedbd/cve-2019-11707★ 2 githubgithub.com/CosminGGeorgescu/CVE-2019-11707-PoC★ 0 exploitdbwww.exploit-db.com/exploits/47038unverified exploitdbwww.exploit-db.com/exploits/50691unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1544386 https://security.gentoo.org/glsa/201908-12 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-11707 https://www.mozilla.org/security/advisories/mfsa2019-18/https://www.mozilla.org/security/advisories/mfsa2019-20/