Rewterz Threat Advisory – CVE 2019- 11733 – Mozilla Fixes Store Passwords in ‘Saved Logins’ can be copied without master password entry

Rewterz Threat Advisory – Microsoft Issues Protection Against BlueKeep Vulnerability (CVE-2019-1162)

August 16, 2019

Rewterz Threat Advisory – CVE 2019-0351 – SAP NetWeaver UDDI Server Remote Code Execution Vulnerability

August 16, 2019

Rewterz Threat Advisory – CVE 2019- 11733 – Mozilla Fixes Store Passwords in ‘Saved Logins’ can be copied without master password entry

Severity

Medium

Analysis Summary

When a master password is set, it is required to be entered before stored passwords can be accessed in the ‘Saved Logins’ dialog. It was found that locally stored passwords can be copied to the clipboard thorough the ‘copy password’ context menu item without first entering the master password, allowing for potential theft of stored passwords.

Impact

Credential theft

Affected Vendors

Mozilla

Affected Products

Firefox
Firefox ESR

Remediation

Update to version:

Firefox 68.0.2
Firefox ESR 68.0.2

Rewterz Threat Advisory – Microsoft Issues Protection Against BlueKeep Vulnerability (CVE-2019-1162)

Rewterz Threat Advisory – CVE 2019-0351 – SAP NetWeaver UDDI Server Remote Code Execution Vulnerability

Rewterz Threat Advisory – CVE 2019- 11733 – Mozilla Fixes Store Passwords in ‘Saved Logins’ can be copied without master password entry

Severity

Analysis Summary

Impact

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan