A Vulnerability in Mozilla PDF.js Could Allow for Arbitrary Code Execution | allinfosecnews.com

May 7, 2024, 6:24 p.m. |

Center for Internet Security - Multi-State Information Sharing and Analysis Center www.cisecurity.org

A vulnerability has been discovered in Mozilla PDF.js could allow for arbitrary code execution. Mozilla PDF.js is a PDF viewer that is built into Mozilla Firefox and can be used by other web browsers. Exploitation of this vulnerability could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users …

arbitrary code arbitrary code execution browsers can code code execution context exploitation firefox mozilla mozilla firefox pdf viewer vulnerability web web browsers

More from www.cisecurity.org / Center for Internet Security - Multi-State Information Sharing and Analysis Center

A Vulnerability in SolarWinds Access Rights Manager Could Allow for Privilege Escalation 4 days ago | www.cisecurity.org

access access rights account attacker +14

Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution 4 days ago | www.cisecurity.org

arbitrary code arbitrary code execution chrome code +7

Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution 4 days, 20 hours ago | www.cisecurity.org

access arbitrary code arbitrary code execution browser +17

Multiple Vulnerabilities in Siemens Ruggedcom Crossbow Could Allow for Arbitrary Code Execution 4 days, 21 hours ago | www.cisecurity.org

access access management arbitrary code arbitrary code execution +17

Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution 4 days, 23 hours ago | www.cisecurity.org

acrobat adobe adobe acrobat application +17

Critical Patches Issued for Microsoft Products, May 14, 2024 5 days, 5 hours ago | www.cisecurity.org

accounts attacker change code +14

A Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution 5 days, 6 hours ago | www.cisecurity.org

arbitrary code arbitrary code execution attacker chrome +9

Multiple Vulnerabilities in Apple Products Could Allow for Arbitrary Code Execution 6 days, 3 hours ago | www.cisecurity.org

apple arbitrary code arbitrary code execution code +6

A Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution 1 week, 2 days ago | www.cisecurity.org

arbitrary code arbitrary code execution attacker chrome +9

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Computer and Forensics Investigator

@ ManTech | 221BQ - Cstmr Site,Springfield,VA

View on infosec-jobs.com

Senior Security Analyst

@ Oracle | United States

View on infosec-jobs.com

Associate Vulnerability Management Specialist

@ Diebold Nixdorf | Hyderabad, Telangana, India

View on infosec-jobs.com