Update your Firefox browser now, new vulnerability has been patched

Memory protection bugs discovered in Firefox 82 have been identified by Mozilla developers.

Any of these vulnerabilities have shown signs of memory leakage and we presume that some of them may have been abused to run arbitrary code with adequate effort. Firefox < 83 is impaired by this flaw.

The Invasion:

Remote execution of code is often provided by an automation method. Attempting to manually execute code remotely will be nearly difficult at all. This attacks are usually written into an electronic script.

Arbitrary remote code execution is most commonly targeted at providing administrative access to a compromised device to a remote user. The attack is typically followed by an attack to obtain information, in which the attacker uses a means to locate the vulnerable version of software, such as an automatic scanning tool. The intruder executes the script against the application until detected, in hopes of achieving local administrative access to the host.

The attacker initiates the procedure discussed in the “Misinformation” section until the attacker has obtained local administrative access to the device. In order to conceal his presence within the structure, the intruder would do his utmost. After that to conduct remote arbitrary code execution attacks against other hosts, he could use the compromised host.

Although remote arbitrary code execution can allow an intruder to execute commands on a device, there are some drawbacks to it.

Reference: