Security Surprises On Firefox Quantum

This morning I've found an scaring surprise on my Firefox Quantum. Casually it was connected to a proxy when an unexpected connection came up, the browser  was connecting to an unknown remote site via HTTP and downloading a ZIP that contains an ELF shared library, without any type of signature on it.

This means two things

1) the owner of that site might spread malware infecting many many people.
2) the ISP also might do that.


Ubuntu Version:

Firefox Quantum version:

The URL: hxxp://ciscobinary.openh264.org/openh264-linux64-0410d336bb748149a4f560eb6108090f078254b1.zip

The zip contains these two files:
  3f201a8984d6d765bc81966842294611  libgmpopenh264.so
  44aef3cd6b755fa5f6968725b67fd3b8  gmpopenh264.info

The info file:
  Name: gmpopenh264
  Description: GMP Plugin for OpenH264.
  Version: 1.6.0
  APIs: encode-video[h264], decode-video[h264]

So there is a remote codec loading system that is unsigned and unencrypted, I think is good to be aware of it.

In this case the shared library is a video decoder, but it would be a vector to distribute malware o spyware massively, or an attack vector for a MITM attacker.

Related word

• Hacker Tools For Mac
• Pentest Tools Windows
• Beginner Hacker Tools
• Pentest Tools Alternative
• Hackers Toolbox
• Hacking Tools Download
• Hack Tools Github
• New Hacker Tools
• How To Install Pentest Tools In Ubuntu
• Hacker Tools Github
• Nsa Hack Tools
• How To Hack
• Hacking Tools For Beginners
• Github Hacking Tools
• Physical Pentest Tools
• Nsa Hacker Tools
• Hacking Tools Software
• Hacking Tools Free Download
• Hacking Tools Download
• Hack Tools Mac
• How To Install Pentest Tools In Ubuntu
• Best Hacking Tools 2020
• Hacker Tools Linux
• Pentest Tools Apk
• Best Pentesting Tools 2018
• Pentest Tools Download
• Hack And Tools
• Github Hacking Tools
• What Are Hacking Tools
• Hack Tools For Mac
• Hacks And Tools
• Tools For Hacker
• Hacker Security Tools
• Hack Tools For Windows
• Pentest Tools Review
• Hacker Security Tools
• Pentest Tools Github
• Hacker Security Tools
• Pentest Tools For Mac
• Nsa Hack Tools
• Hack Rom Tools
• Hacker Tools Free
• Pentest Automation Tools
• Hak5 Tools
• Nsa Hacker Tools
• Best Hacking Tools 2020
• Hack App
• Hacking Tools Windows 10
• Hacker Hardware Tools
• Pentest Tools Website Vulnerability
• Top Pentest Tools
• Nsa Hack Tools Download
• Best Hacking Tools 2020
• Bluetooth Hacking Tools Kali
• Hacker Tools
• How To Make Hacking Tools
• Blackhat Hacker Tools
• How To Hack
• Hack App
• How To Hack
• Termux Hacking Tools 2019
• Hack Tools For Pc
• Github Hacking Tools
• Hacker Tools Windows
• Tools For Hacker
• Hacking Tools Download
• Pentest Tools Download
• Hacker Tools For Mac
• Hacking Tools Software
• Pentest Tools Open Source
• Hack Tools
• Hacker Tools For Mac
• Termux Hacking Tools 2019
• Tools Used For Hacking
• Pentest Tools Website
• Easy Hack Tools
• Game Hacking
• Hack Tools For Mac
• Beginner Hacker Tools
• Hacker Search Tools
• Top Pentest Tools
• Hacker Tools For Pc
• Hacking Apps
• Hacking Tools Usb
• Hacker Tools
• Pentest Tools Free
• Hacking Tools For Windows Free Download
• Hacking Tools For Windows
• Tools For Hacker
• Hacking Tools Pc
• Hacking Tools 2019
• Hacker Search Tools
• Growth Hacker Tools
• Hack Tools Pc
• Beginner Hacker Tools
• Hack Tools Github
• New Hacker Tools
• Pentest Tools Website Vulnerability
• Bluetooth Hacking Tools Kali
• Hackers Toolbox
• Pentest Tools Subdomain
• Hack Tools For Ubuntu
• Pentest Recon Tools
• Hack Tools 2019
• Hacking Tools Mac
• Game Hacking
• Hack Tool Apk
• Hack Tools Download
• Hacking Tools Software
• Hacker Tools 2020
• Pentest Tools Framework
• Hacking Tools Kit
• Hacking Tools For Windows
• Hack Tools For Mac
• Hacker Tools Apk Download
• Pentest Tools Open Source
• Ethical Hacker Tools
• Hacker Tools Online
• Hacking Tools
• Pentest Tools For Mac
• Hacker Tools Online
• Black Hat Hacker Tools
• Hack Tools For Games
• Hacker Tools Software
• Github Hacking Tools
• Pentest Tools Linux
• Hacking Tools Name
• Pentest Tools Website
• What Are Hacking Tools
• Hack Tools
• Pentest Tools Download
• Hacker Tools Free Download
• Android Hack Tools Github
• Pentest Tools List
• Pentest Tools Apk
• Install Pentest Tools Ubuntu
• Hacking Tools Windows
• Hacker Tools 2019
• Tools 4 Hack
• Hack Tools For Mac
• Top Pentest Tools
• Hacking Tools Pc
• Beginner Hacker Tools
• Hacks And Tools
• Hacker Tools Apk
• Hacker Techniques Tools And Incident Handling
• Hacker
• Pentest Tools Review
• Hack Tools Github
• Pentest Tools Alternative
• Pentest Tools Port Scanner
• Hackers Toolbox
• Pentest Tools For Mac
• Hacking Tools Free Download
• Hack Tools
• Pentest Tools Kali Linux
• Hacker Tools List
• New Hacker Tools
• Wifi Hacker Tools For Windows
• Hacking Tools For Kali Linux
• Hack And Tools
• Hacking Tools Name
• Hack And Tools
• How To Make Hacking Tools
• Hacking Tools For Beginners
• Hacker Tools For Ios
• Hacker Tools Apk
• Physical Pentest Tools
• Best Pentesting Tools 2018
• Pentest Tools Online
• Physical Pentest Tools
• Hacker Tools 2019