Mozilla released a security update for Critical Zero-day vulnerability that fixed in a new version of Firefox 67.0.3 and Firefox ESR 60.7.
Critical vulnerabilities can be used to run attacker code and install software, requiring no user interaction beyond normal browsing.
Cybercriminals are actively exploiting this Critical Zero-day vulnerability in wide and the attacker could exploit this vulnerability to take control of an affected system.
There are various exploit attempts identified, and the attackers targeting the unpatched old version of Firefox and exploit this critical zero-day vulnerability.
Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw.
The Zero-day flaw tracked as CVE-2019-5786 and the users can install the new update via following links.
- Firefox 67.0.3 for Windows 64-bit
- Firefox 67.0.3 for Windows 32-bit
- Firefox 67.0.3 for macOS
- Firefox 67.0.3 for Linux 64-bit
- Firefox 67.0.3 for Linux 32-bit
All the FireFox user urged to update the new version immediately to protect themselves from this zero-day exploit and keep your system safe and secure.