Sandbox Restrictions Bypass

2019-09-1100:06:45

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.005 Low

EPSS

Percentile

77.1%

JSON

firefox is vulnerable to sandbox restrictions bypass. Given a compromised sandboxed content process due to a separate vulnerability, it is possible to escape that sandbox by loading accounts.firefox.com in that process and forcing a log-in to a malicious Firefox Sync account. Preference settings that disable the sandbox are then synchronized to the local machine and the compromised browser would restart without the sandbox if a crash is triggered.

CPENameOperatorVersion
firefoxeq38.6.1__1.el6_7
firefoxeq3.6.17__1.el6_0
firefoxeq31.5.0__1.el6_6
firefoxeq24.4.0__1.el6_5
firefoxeq38.7.0__1.el6_7
firefoxeq10.0.5__1.el6_2
firefoxeq10.0.8__1.el6_3
firefoxeq3.6.14__4.el6_0
firefoxeq17.0.10__1.el6_4
firefoxeq38.1.1__1.el6_7

Name	Operator	Version
firefox	eq	38.6.1__1.el6_7
firefox	eq	3.6.17__1.el6_0
firefox	eq	31.5.0__1.el6_6
firefox	eq	24.4.0__1.el6_5
firefox	eq	38.7.0__1.el6_7
firefox	eq	10.0.5__1.el6_2
firefox	eq	10.0.8__1.el6_3
firefox	eq	3.6.14__4.el6_0
firefox	eq	17.0.10__1.el6_4
firefox	eq	38.1.1__1.el6_7