The Indian Computer Emergency Response Team (CERT-In), which belongs to the IT Ministry, last week warned users about several vulnerabilities in Google Chrome. And now the same agency has issued a warning to Mozilla users, saying that multiple vulnerabilities in Mozilla Firefox products could allow hackers to compromise devices and systems.
“Bugs in the Mozilla Firefox browser could allow a remote attacker to bypass security restrictions, execute arbitrary code and cause a denial of service attack on the target system,” CERT-In said in its latest statement (opens in new tab). It’s almost a similar word-for-word warning that was issued to Chrome users last week.
CERT-In also found a vulnerability in the Drupal open source coding platform that could allow an attacker to bypass security restrictions on the target system.
this is what you need to do
The emergency response team said: “These vulnerabilities exist in Mozilla Firefox due to abuse of XSLT error handling, cross-origin iframe referencing an XSLT document… .”
As in the case of Chrome, CERT-In said that Mozilla Firefox users would do well to update the browser to its latest versions. “Update to Mozilla Firefox Thuderbird versions 91.13 and 102.2, Firefox ESR version 91.13 and 102.2 and Mozilla Firefox version 104,” he said.
This is not the first time that CERT-In has warned about vulnerabilities in the Mozilla browser. In July of this year, the team also asked users to be cautious with some browser bugs.
At that time he had said: “These vulnerabilities exist in Mozilla Firefox due to SQL injection in history tab, cross-origin resource leak, heap buffer overflow in WebGL, browser window spoofing using full screen mode …”.
How to update Firefox browser?
Click the menu button on the right side of the Firefox toolbar, go to Help and select About Firefox
Firefox will check for updates automatically. If an update is available, it will be downloaded.
When the download is complete, click Restart to update Firefox.