cybersecurity: Indian cyber agency reports several bugs in Chrome OS and Mozilla


New Delhi: India’s Computer Emergency Response Team (CERT-In) has reported several bugs in Chrome OS and Mozilla products that may put various sensitive data at risk.

In a report, the agency mentioned that the bugs could allow a remote attacker to disclose sensitive information, bypass security restrictions, execute arbitrary code, perform spoofing attacks, and to cause a denial of service (DoS) attack on the targeted system.

“These vulnerabilities exist in Mozilla Firefox due to SQL injection in the History tab, cross-origin resource length leak, heap buffer overflow in WebGL, window spoofing browser in full-screen mode…” CERT-In said on its website.

A remote attacker could exploit these vulnerabilities by tricking a victim into opening a specially crafted web request.

“Successful exploitation of these vulnerabilities could allow a remote attacker to disclose sensitive information, bypass security restrictions, execute arbitrary code, and cause a denial of service (DoS) attack on the targeted system” , according to CERT-In.

Users can upgrade to Mozilla Firefox iOS 101, Firefox Thunderbird 91.10, Firefox ESR 91.10 and Mozilla Firefox 101 for better security.

Discover the stories that interest you



Meanwhile, in March, the central government said in the Rajya Sabha that CERT-In observed over 14 lakh cybersecurity incidents in 2021.

Stay on top of tech news and the startups that matter. Subscribe to our daily newsletter for the latest must-have tech news, delivered straight to your inbox.
Previous Goodman Campbell's computer network attacked by hackers – Indianapolis Business Journal
Next Apple macOS 13 Ventura Update and Bug Tracking (Updated Suite)