Sensitive Information Disclosure in Mozilla Firefox Crash Reporting on OS X

Sensitive Information Disclosure in Mozilla Firefox Crash Reporting on OS X

CVE-2015-2742 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

Mozilla Firefox before 39.0 on OS X includes native key press information during the logging of crashes, which allows remote attackers to obtain sensitive information by leveraging access to a crash-reporting data stream.

Learn more about our Web Application Penetration Testing UK.