ASA-2019-00439 – Mozilla Firefox: Activity Stream writes unsanitized content to innerHTML

Posted on by Allele Security Intelligence in Alerts

Allele Security Alert

ASA-2019-00439

Identifier(s)

ASA-2019-00439, CVE-2019-11718, MFSA2019-21

Title

Activity Stream writes unsanitized content to innerHTML

Vendor(s)

Mozilla

Product(s)

Mozilla Firefox

Affected version(s)

Mozilla Firefox version before 68

Fixed version(s)

Mozilla Firefox version 68

Proof of concept

Unknown

Description

Activity Stream can display content sent from the Snippet Service website. This content is written to innerHTML on the Activity Stream page without sanitization, allowing for a potential access to other information available to the Activity Stream, such as browsing history, if the Snipper Service were compromised.

Technical details

Unknown

Credits

Mark Banner

Reference(s)

Mozilla Foundation Security Advisory 2019-21
https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11718

Bug 1408349
https://bugzilla.mozilla.org/show_bug.cgi?id=1408349

CVE-2019-11718
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11718

CVE-2019-11718
https://nvd.nist.gov/vuln/detail/CVE-2019-11718

If there is any error in this alert or you wish a comprehensive analysis, let us know.

Last modified: July 17, 2019

We are not responsible for any data loss, device corruption or any other type of issue due to the use of any information mentioned in our security alerts.