![\"\"](\"\/\/www.iser-br.com\/Themes\/Release\/images\/responsive\/ettelecom-default.jpg\")
New Delhi: The Indian Computer Emergency Response Team (CERT-In<\/a>) has flagged several bugs in Chrome<\/a> OS and Mozilla products that may put various sensitive data at risk.
In a report, the agency mentioned that the bugs could allow a remote attacker to disclose sensitive information, bypass security restrictions, execute arbitrary code, perform spoofing attacks and cause a denial of service (DoS<\/a>) attack on the targeted system.
\"These vulnerabilities exist in Mozilla Firefox<\/a> due to SQL injection in the history tab, Cross-Origin resources length leaked, Heap buffer overflow in WebGL, Browser<\/a> window spoof using full-screen mode...\" CERT-In said on its website.
A remote attacker could exploit these vulnerabilities by convincing a victim to open a specially crafted web request.
\"Successful exploitation of these vulnerabilities could allow a remote attacker to disclose sensitive information, bypass security restrictions, execute arbitrary code, and cause a denial of service (DoS) attack on the targeted system,\" as per CERT-In.
Users can upgrade to Mozilla Firefox iOS 101, Firefox Thunderbird 91.10, Firefox ESR 91.10, and Mozilla Firefox 101 for better security.
Meanwhile, in March, the Central government said in the Rajya Sabha that the CERT-In has observed over 14 lakh cyber security incidents during 2021.
<\/body>","next_sibling":[{"msid":92053878,"title":"Signs are flashing in chips, shipping and fertilizer that inflation may have peaked","entity_type":"ARTICLE","link":"\/news\/signs-are-flashing-in-chips-shipping-and-fertilizer-that-inflation-may-have-peaked\/92053878","category_name":null,"category_name_seo":"telecomnews"}],"related_content":[{"msid":"92055024","title":"Cybersecurity","entity_type":"IMAGES","seopath":"tech\/technology\/indian-cyber-agency-flags-multiple-bugs-in-chrome-os-mozilla\/cybersecurity","category_name":"Indian cyber agency flags multiple bugs in Chrome OS, Mozilla","synopsis":false,"thumb":"https:\/\/etimg.etb2bimg.com\/thumb\/img-size-34668\/92055024.cms?width=150&height=112","link":"\/image\/tech\/technology\/indian-cyber-agency-flags-multiple-bugs-in-chrome-os-mozilla\/cybersecurity\/92055024"}],"msid":92055462,"entity_type":"ARTICLE","title":"Indian cyber agency flags multiple bugs in Chrome OS, Mozilla","synopsis":"In a report, the agency mentioned that the bugs could allow a remote attacker to disclose sensitive information. ","titleseo":"telecomnews\/indian-cyber-agency-flags-multiple-bugs-in-chrome-os-mozilla","status":"ACTIVE","authors":[],"Alttitle":{"minfo":""},"artag":"IANS","artdate":"2022-06-07 13:10:51","lastupd":"2022-06-07 13:19:27","breadcrumbTags":["indian cyber agency","internet","cybersecurity","cert-in","mozilla firefox","chrome","hacker","browser","dos","cyber security news"],"secinfo":{"seolocation":"telecomnews\/indian-cyber-agency-flags-multiple-bugs-in-chrome-os-mozilla"}}" data-authors="[" "]" data-category-name="" data-category_id="" data-date="2022-06-07" data-index="article_1">
新德里:印度计算机紧急响应小组(、)标记几个bug铬操作系统和Mozilla的产品可能把各种敏感数据面临风险。
在一份报告中,该机构提到漏洞可能允许远程攻击者披露敏感信息,绕过安全限制,执行任意代码,进行欺骗攻击,造成拒绝服务(DoS)攻击目标系统。
“这些漏洞存在Mozilla Firefox历史上由于SQL注入选项卡中,跨源资源泄露的长度,堆在WebGL缓冲区溢出,浏览器使用全屏模式窗口恶搞……”、said on its website.
远程攻击者可以利用这些漏洞说服受害者打开一个特殊的web请求。
“成功利用这些漏洞可能允许远程攻击者披露敏感信息,绕过安全限制,执行任意代码,并导致拒绝服务(DoS)攻击目标系统,“按、。
用户可以升级到101年Mozilla Firefox iOS, Firefox 91.10雷鸟,Firefox 91.10 ESR, Mozilla Firefox 101更好的安全性。
与此同时,今年3月,中央政府说的联邦院议长、观察了14个十万的网络安全事件在2021年。
评论
现在评论 阅读评论(1)所有评论
找到这个评论进攻?
下面选择你的理由并单击submit按钮。这将提醒我们的版主采取行动