Test ID:	1.3.6.1.4.1.25623.1.0.832076
Category:	General
Title:	Mozilla Firefox Security Advisories (MFSA2023-16, MFSA2023-17) - Windows
Summary:	Mozilla Firefox is prone to multiple; vulnerabilities.
Description:	Summary: Mozilla Firefox is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws exist due to, - Browser prompts could have been obscured by popups. - Crash in RLBox Expat driver. - Potential permissions request bypass via clickjacking. - Leak of script base URL in service workers via import(). - Persistent DoS via favicon image. - Incorrect principal object ordering. - Content process crash due to invalid wasm code. - Potential spoof due to obscured address bar. - Potential memory corruption in FileReader::DoReadData(). - Potential DoS via exposed protocol handlers. Vulnerability Impact: Successful exploitation allow attackers to disclose sensitive information, execute arbitrary code and cause denial of service condition. Affected Software/OS: Mozilla Firefox version before 113 on Windows. Solution: Upgrade to Mozilla Firefox version 113 or later, Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-32205 https://security.gentoo.org/glsa/202312-03 https://security.gentoo.org/glsa/202401-10 https://bugzilla.mozilla.org/show_bug.cgi?id=1753339 https://bugzilla.mozilla.org/show_bug.cgi?id=1753341 https://www.mozilla.org/security/advisories/mfsa2023-16/ https://www.mozilla.org/security/advisories/mfsa2023-17/ https://www.mozilla.org/security/advisories/mfsa2023-18/ Common Vulnerability Exposure (CVE) ID: CVE-2023-32206 https://bugzilla.mozilla.org/show_bug.cgi?id=1824892 Common Vulnerability Exposure (CVE) ID: CVE-2023-32207 https://bugzilla.mozilla.org/show_bug.cgi?id=1826116 Common Vulnerability Exposure (CVE) ID: CVE-2023-32208 https://bugzilla.mozilla.org/show_bug.cgi?id=1646034 Common Vulnerability Exposure (CVE) ID: CVE-2023-32209 https://bugzilla.mozilla.org/show_bug.cgi?id=1767194 Common Vulnerability Exposure (CVE) ID: CVE-2023-32210 https://bugzilla.mozilla.org/show_bug.cgi?id=1776755 Common Vulnerability Exposure (CVE) ID: CVE-2023-32211 https://bugzilla.mozilla.org/show_bug.cgi?id=1823379 Common Vulnerability Exposure (CVE) ID: CVE-2023-32212 https://bugzilla.mozilla.org/show_bug.cgi?id=1826622 Common Vulnerability Exposure (CVE) ID: CVE-2023-32213 https://bugzilla.mozilla.org/show_bug.cgi?id=1826666 Common Vulnerability Exposure (CVE) ID: CVE-2023-32214 https://bugzilla.mozilla.org/show_bug.cgi?id=1828716 Common Vulnerability Exposure (CVE) ID: CVE-2023-32215 https://bugzilla.mozilla.org/buglist.cgi?bug_id=1540883%2C1751943%2C1814856%2C1820210%2C1821480%2C1827019%2C1827024%2C1827144%2C1827359%2C1830186 Common Vulnerability Exposure (CVE) ID: CVE-2023-32216 Memory safety bugs fixed in Firefox 113 https://bugzilla.mozilla.org/buglist.cgi?bug_id=1746479%2C1806852%2C1815987%2C1820359%2C1823568%2C1824803%2C1824834%2C1825170%2C1827020%2C1828130
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.