Details
Javascript can initiate and interact with the Plug-ins installed in Firefox.
This may reduce a malicious script’s ability to exploit vulnerabilities in plug-ins or abuse plug-in features.
Solution
Perform the following procedure:
* Open the mozilla.cfg file in the installation directory with a text editor
* Add the following lines to mozilla.cfg:
lockPref(“security.xpconnect.plugin.unrestricted”, false);
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Unix.