Mozilla has released a patch for a vulnerability in Firefox that was discovered when a user found it being actively exploited in the wild. The bug affects Firefox s PDF viewer and Mozilla officials said that the exploit being used by attackers right now looked for specific files on a targeted machine and uploads them to a remote server. Mozilla said the exploit goes after Windows, Linux, and Mac machines. It does not allow for remote code execution, though, though. The exploit may exist on other websites.
Source: https://threatpost.com/mozilla-patches-bug-used-in-active-attacks/114172/