We have recently discovered a series of vulnerabilities in Firefox for Android that allows a malicious application to leak sensitive information pertaining to the user profile. We developed attacks that first try to determine the random Firefox profile directory name and then exfiltrate sensitive data, such as cookies and cached information, from the derandomized folder, breaking Android’s sandbox.
read more.....http://securityintelligence.com/vulnerabilities-firefox-android-overtaking-firefox-profiles/
read more.....http://securityintelligence.com/vulnerabilities-firefox-android-overtaking-firefox-profiles/