ALERT: Update Mozilla Firefox Browser for Zero-Day Vulnerability

Firefox has released security updates to address a high-severity, zero-day vulnerability in the Firefox browser.

Mozilla has issued an emergency security update for the Firefox browser to address a critical use-after-free vulnerability that is currently exploited in attacks. This type of flaw occurs when memory that has been freed is still used by the program, allowing malicious actors to add their own malicious data to the memory region to perform code execution.

Such remote code execution vulnerabilities could be used by threat actors in several ways, either as part of a watering hole attack targeting specific websites or using a drive-by download campaign that tricks users into visiting bogus websites.

According to Firefox, an exploit for this vulnerability exists in the wild and reports indicate that the vulnerability is being actively exploited.

Due to reports of active exploitation of this vulnerability, the need for immediate action supersedes the remediation timeframes in Vulnerability Management (DS-21).

To begin using the new version:

1. Launch Firefox and go to Settings > Help > About Firefox, and the update should start automatically. 
2. A restart of the program will be required for the changes to apply.

ITS provides CrowdStrike Falcon to units, which should be installed on all U-M owned systems (Windows, macOS, and Linux operating systems, whether workstations or servers). Falcon administrators in ITS and in U-M units use the Falcon console to investigate and remediate issues.

MiWorkspace machines will be patched as soon as possible. If you have Mozilla Firefox installed on your own devices that are not managed by the university, please follow the steps in Action Items above.

In general, the best protection for your devices is this: keep your software and apps up-to-date, do not click suspicious links in email, do not open shared documents or email attachments unless you are expecting them and trust the person who sent them, and only use secure, trusted networks. For more information, see Phishing & Scams, Secure Your Devices, and Secure Your Internet Connection on the U-M Safe Computing website.

Please contact ITS Information Assurance through the ITS Service Center.

• https://www.bleepingcomputer.com/news/security/mozilla-fixes-firefox-zero-day-actively-exploited-in-attacks/
• https://thehackernews.com/2024/10/mozilla-warns-of-active-exploitation-in.html
• https://www.mozilla.org/en-US/security/advisories/mfsa2024-51/
• https://nvd.nist.gov/vuln/detail/CVE-2024-9680