Like Apples Safari, the open-source Mozilla Firefox browser does not properly implement ASLR, a key anti-exploit mitigation that can limit the damage from hacker attacks. Nils, the U.K.-based researcher who compromised a Windows machine running Firefox for the second year in a row, told me its somewhat trivial to bypass Firefoxs ASLR implementation because there are some.dll files that does not. properly implement the address space layout randomization mitigation.”]
Source: https://threatpost.com/mozilla-falls-short-on-firefox-aslr-implementation/91698/