A new bug in Mozilla Firefox allows hijacking nearby mobile browsers via WiFi.

Mozilla Firefox has been one of the most popular browsers for both mobile devices and computers, with the maximum emphasis on security and data privacy. However, a new bug in Mozilla has been discovered which lets you hack nearby mobile browsers via WiFi. the bug was first discovered by Chris Moberly, an Australian security researcher working for GitLab. As per him the problem actually lies in the Firefox SSDP, which is Simple Service Discovery Protocol. It is a process or mechanism through which Firefox finds other devices on the same network in order to share or receive content. 

When the devices are found, this Firefox SSDP gets the location of the XML file, which has all the details about the device configuration. The older version of the browser could hide the intent commands in XML and have the Firefox browser execute the “intent,” which could be a regular command. Now, this vulnerability could be easily used to hack into someone’s device and get access to it. However, the researcher Chris Moberly did confirm that the vulnerability was reported to Mozilla earlier this year. 

The issue did not impact the Firefox browser that was running on a desktop or laptop, but it did affect the mobile devices and smartphones. Mozilla claims that the issue has already been fixed and now only exists in the older version. Therefore, it is recommended to update the browser immediately on the smartphones, which will resolve the issue. The latest version on which the user should update to is V79 for Android.

SourceZdnet

Related Stories

Stay Updated - Get Tech News Updates to your Inbox.