Important Notice: We're experiencing email notification issues. If you've posted a question in the community forums recently, please check your profile manually for responses while we're working to fix this.

On Monday the 3rd of March, around 5pm UTC (9am PT) users may experience a brief period of downtime while one of our underlying services is under maintenance.

Avatar for Username

搜尋 Mozilla 技術支援網站

防止技術支援詐騙。我們絕對不會要求您撥打電話或發送簡訊,或是提供個人資訊。請用「回報濫用」功能回報可疑的行為。

了解更多

此討論串已被封存。 如果您有需要幫助,請新增一個新問題

ClamXav reports Xml.Exploit.CVE_2013_3860-3 infection in the Firefox 48.0.1 MacOS app

  • 1 回覆
  • 3 有這個問題
  • 1 次檢視
  • 最近回覆由 John99

rayt1
rayt1
more options

update today to 48.0.1 on Mac, ClamXav reports infection 'File Name Infection Name Status /Applications/Firefox.app Xml.Exploit.CVE_2013_3860-3' Deleted firefox and downloaded/installed new from this site but ClamXav again reports same infection ?whether real or relevant

update today to 48.0.1 on Mac, ClamXav reports infection 'File Name Infection Name Status /Applications/Firefox.app Xml.Exploit.CVE_2013_3860-3' Deleted firefox and downloaded/installed new from this site but ClamXav again reports same infection ?whether real or relevant

被選擇的解決方法

This is not a definitive answer. I am not even a Mac user.

Official Mozilla Firefox downloads have As Far As I Know never contained malware they have however occasionally triggered false positives, which I imagine is what is happening here.

Also if that malware is the same as https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-3860 it looks like it is something that affects only Windows so it should not be any immediate problem on a Mac.

The official download site would be

You would presumably have initially got an update using the installed Firefox, there is just a possibility that is corrupt (or settings are corrupt)

If you wish to you could try what we call a clean reinstall where the original application files are trashed before reinstalling. However from what you say I presume the problem is only detected after the new Fx48.0.1 is installed and that your download would have been from an official site as you said.

從原來的回覆中察看解決方案 👍 1

所有回覆 (1)

John99
John99
more options

選擇的解決方法

This is not a definitive answer. I am not even a Mac user.

Official Mozilla Firefox downloads have As Far As I Know never contained malware they have however occasionally triggered false positives, which I imagine is what is happening here.

Also if that malware is the same as https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-3860 it looks like it is something that affects only Windows so it should not be any immediate problem on a Mac.

The official download site would be

You would presumably have initially got an update using the installed Firefox, there is just a possibility that is corrupt (or settings are corrupt)

If you wish to you could try what we call a clean reinstall where the original application files are trashed before reinstalling. However from what you say I presume the problem is only detected after the new Fx48.0.1 is installed and that your download would have been from an official site as you said.