PT-2019-3442 · Mozilla+6 · Firefox+8
Samuel Groß
·
Published
2018-07-05
·
Updated
2025-09-29
·
CVE-2019-11707
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Firefox versions prior to 67.0.3
Firefox ESR versions prior to 60.7.1
Thunderbird versions prior to 60.7.2
Description
A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in
Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw. The vulnerability is related to JavaScript objects manipulation and issues in Array.pop, allowing remote attackers to cause a denial of service (crash) or potentially execute arbitrary code.Recommendations
For Firefox versions prior to 67.0.3, update to version 67.0.3 or later.
For Firefox ESR versions prior to 60.7.1, update to version 60.7.1 or later.
For Thunderbird versions prior to 60.7.2, update to version 60.7.2 or later.
As a temporary workaround, consider disabling the
Array.pop method until a patch is available. Restrict access to JavaScript objects to minimize the risk of exploitation. Avoid using vulnerable JavaScript code until the issue is resolved.Exploit
Fix
DoS
Type Confusion
Incorrect Type Conversion or Cast
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Alt Linux
Centos
Firefox
Firefox Esr
Red Hat
Suse
Thunderbird
Tor Browser
Ubuntu