Security Surprises On Firefox Quantum

This morning I've found an scaring surprise on my Firefox Quantum. Casually it was connected to a proxy when an unexpected connection came up, the browser  was connecting to an unknown remote site via HTTP and downloading a ZIP that contains an ELF shared library, without any type of signature on it.

This means two things

1) the owner of that site might spread malware infecting many many people.
2) the ISP also might do that.


Ubuntu Version:

Firefox Quantum version:

The URL: hxxp://ciscobinary.openh264.org/openh264-linux64-0410d336bb748149a4f560eb6108090f078254b1.zip

The zip contains these two files:
  3f201a8984d6d765bc81966842294611  libgmpopenh264.so
  44aef3cd6b755fa5f6968725b67fd3b8  gmpopenh264.info

The info file:
  Name: gmpopenh264
  Description: GMP Plugin for OpenH264.
  Version: 1.6.0
  APIs: encode-video[h264], decode-video[h264]

So there is a remote codec loading system that is unsigned and unencrypted, I think is good to be aware of it.

In this case the shared library is a video decoder, but it would be a vector to distribute malware o spyware massively, or an attack vector for a MITM attacker.

More information

1. Hacking App
2. Hacker Tools For Pc
3. Hack Tool Apk No Root
4. Usb Pentest Tools
5. Hack Tools Pc
6. Hacking Tools For Windows Free Download
7. Growth Hacker Tools
8. Pentest Tools Tcp Port Scanner
9. Hacking Tools Download
10. Hacking Tools For Pc
11. Best Pentesting Tools 2018
12. Hack Tools For Ubuntu
13. Hacker Techniques Tools And Incident Handling
14. Kik Hack Tools
15. Usb Pentest Tools
16. Hacker Tools Apk
17. Hacking Tools Free Download
18. Hack Tools For Windows
19. Install Pentest Tools Ubuntu
20. Hacker Tools For Ios
21. Hacking Tools Download
22. Pentest Tools Website Vulnerability
23. Hacking App
24. Hacking Tools For Windows Free Download
25. Hack Tool Apk
26. Hacker Tools For Windows
27. Hacker Tools Linux
28. Tools For Hacker
29. Hacker Tools Free
30. Hacker Tools
31. Hack Tools For Games
32. Hacker Tools Linux
33. Hack Apps
34. Tools For Hacker
35. Hackers Toolbox
36. Android Hack Tools Github
37. Computer Hacker
38. Hack Rom Tools
39. Github Hacking Tools
40. Github Hacking Tools
41. Hacking Tools For Windows
42. Beginner Hacker Tools
43. Hack Tools For Windows
44. Hackers Toolbox
45. Pentest Tools Online
46. Hack Tool Apk
47. Nsa Hack Tools
48. Hack Tools Github
49. Pentest Tools Website
50. Best Hacking Tools 2019
51. Hacker Tools 2020
52. Hack Tool Apk No Root
53. Hacker Security Tools
54. How To Hack
55. Hack Tool Apk
56. Hacker Tools For Pc
57. Underground Hacker Sites
58. Pentest Tools Open Source
59. Pentest Tools For Mac
60. Hack Tools 2019
61. Beginner Hacker Tools
62. Bluetooth Hacking Tools Kali
63. Hacker Tools List
64. Hacking Tools 2019
65. Hacker Tools Github
66. New Hack Tools
67. Github Hacking Tools
68. Hacker
69. Hack Apps
70. Hacker Tool Kit
71. Hacker Tools 2020
72. What Is Hacking Tools
73. Pentest Tools Github
74. Hacker Tools For Windows
75. Hacker Tools Hardware
76. Hacking Tools Online
77. Hacking Tools For Windows 7
78. Pentest Tools Bluekeep
79. Hacking Tools For Games
80. Pentest Tools Github
81. Hacking Tools Windows 10
82. Hack Tool Apk
83. Hacker Tools
84. Hack Tools
85. Hacking Tools Windows
86. Hack Tools Download
87. Hacker Tools Apk Download
88. Hacker
89. Hacker Tools 2019
90. Underground Hacker Sites
91. Hacker Hardware Tools
92. Hack And Tools
93. What Is Hacking Tools
94. Bluetooth Hacking Tools Kali
95. Pentest Tools Alternative
96. Wifi Hacker Tools For Windows
97. World No 1 Hacker Software
98. Pentest Tools Github
99. Hacking Tools Software
100. Android Hack Tools Github
101. Hacking Tools For Kali Linux
102. Hacking Apps
103. Hacking Apps
104. Hackers Toolbox
105. Hack Tool Apk No Root
106. Hack App
107. Pentest Tools
108. Ethical Hacker Tools
109. Hacking Tools Windows
110. Pentest Tools Subdomain
111. Hacker Tools Free
112. Pentest Tools For Android
113. Hacker Tools Free Download
114. Pentest Tools Website Vulnerability
115. Pentest Tools For Windows
116. Hacker Tools Software
117. Hackrf Tools
118. Growth Hacker Tools
119. Hacking Tools And Software
120. Hacking Tools Windows
121. Hacker Tools Windows
122. How To Hack
123. Hack Apps
124. Hacking Tools Windows 10
125. Hack Tools
126. Hacking Tools Kit
127. Hack Tools For Mac
128. Hacker Hardware Tools
129. Computer Hacker
130. Pentest Tools Free
131. Hacking Tools Software
132. Blackhat Hacker Tools
133. Wifi Hacker Tools For Windows
134. Hacking Tools Usb
135. Pentest Reporting Tools
136. Hack Tools Download
137. What Are Hacking Tools
138. How To Hack
139. Pentest Tools Kali Linux
140. Hacker Tools Windows
141. Hacker Tools 2020
142. Nsa Hacker Tools
143. Pentest Tools Tcp Port Scanner
144. Nsa Hack Tools Download
145. Usb Pentest Tools
146. Hacking Tools Online
147. Hacking Tools For Windows Free Download
148. Pentest Tools Review
149. What Are Hacking Tools
150. Hack Tools Mac
151. Pentest Tools Online
152. Nsa Hack Tools Download
153. World No 1 Hacker Software
154. Hack Rom Tools
155. Nsa Hacker Tools
156. Hacking Tools For Windows 7
157. Pentest Tools Framework
158. Hack Tools For Games
159. Tools Used For Hacking
160. Bluetooth Hacking Tools Kali
161. Nsa Hack Tools Download
162. Hacker Tools For Ios
163. How To Make Hacking Tools
164. Hack Tool Apk
165. Hacking Tools For Mac
166. Tools 4 Hack
167. Hacker Tools Free Download
168. Hacking Tools Name
169. Hacking Tools Hardware
170. Hackers Toolbox
171. Pentest Tools Url Fuzzer
172. Hacker Tools Apk Download
173. How To Hack
174. Hacker Tools Apk Download
175. Hack Tools 2019
176. Kik Hack Tools
177. Pentest Tools Website
178. Hack Website Online Tool