Mozilla Firefox ESR < 68.4.1
High Nessus Plugin ID 132712
SynopsisA web browser installed on the remote macOS or Mac OS X host is affected by a vulnerability.
DescriptionThe version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 68.4.1. It is, therefore, affected by the vulnerability as referenced in the mfsa2020-03 advisory.
- Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild abusing this flaw. (CVE-2019-17026)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
SolutionUpgrade to Mozilla Firefox ESR version 68.4.1 or later.