Firefox update fixes zero-day vulnerability

The latest update to Firefox (v72.0.1) patched up a ‘type confusion’ vulnerability in Mozilla’s beloved browser.

The zero-day vulnerability impacted IonMonkey, which is a JavaScript JIT compiler for SpiderMonkey.

A ‘type confusion’ exploit manipulates the memory allocation of inputs. An input gets allocated to a certain type of memory space. The type of memory space is then switched, which leads to unwanted consequences and leaves the entire system vulnerable.

This is the third zero-day that the Firefox maker has fixed over the last year after patching up two major security loopholes in June 2019.

The most recent problem was discovered by Chinese cyber-security firm, Qihoo 360.

Qihoo 360 also said in a tweet that Internet Explorer had a similar vulnerability but subsequently removed the post from the social network. Microsoft did not release an update for the browser nor did it issue any statements on the matter.

About author

Ivana Vojinovic

Ever since she played her first game of Super Mario back in the 90s, Ivana was hooked on technology. Years later, she started her career working for a company that sells EU GDPR documentation. This job has thought her the importance of proper data collection, storage, and handling. Soon she realized that dealing with customer information was something many companies found challenging and that many individuals are ignorant about the amount of data they leave online. This inspired here to launch DataProt - a website that educates people on internet privacy and gives cybersecurity advice.