Korean
<< Back
VID 28963
Severity 40
Port 139,445
Protocol TCP
Class SMB
Detailed Description The version of Firefox installed on the remote Windows host is prior to 139.0.4. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-47 advisory.

- An integer overflow was present in <code>OrderedHashTable</code> used by the JavaScript engine (CVE-2025-49710)
- Certain canvas operations could have lead to memory corruption. (CVE-2025-49709)

* References:
https://www.mozilla.org/en-US/security/advisories/mfsa2025-47/

* Platforms Affected:
Mozilla Foundation, Firefox versions prior to 139.0.4
Any operating system Any version
Recommendation Upgrade to the latest version of Firefox (139.0.4 or later), available from the Mozilla Web site at http://www.mozilla.com/firefox/
Related URL CVE-2025-49709,CVE-2025-49710 (CVE)
Related URL (SecurityFocus)
Related URL (ISS)