Type Confusion and Arbitrary Memory Access in IonMonkey JIT Code through proto Mutation

CVE-2019-9813 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Incorrect handling of __proto__ mutations may lead to type confusion in IonMonkey JIT code and can be leveraged for arbitrary memory read and write. This vulnerability affects Firefox < 66.0.1, Firefox ESR < 60.6.1, and Thunderbird < 60.6.1.

Learn more about our Web Application Penetration Testing UK.

Type Confusion and Arbitrary Memory Access in IonMonkey JIT Code through __proto__ Mutation

CVE-2019-9813 · MEDIUM Severity

Type Confusion and Arbitrary Memory Access in IonMonkey JIT Code through proto Mutation