Jump to content

Firefox 58.0.1 getting shutdown by MB for "Exploit ROP gadget attack"

Recommended Posts

My Firefox just updated and now MB keeps shutting it down, over and over.  I posted elsewhere but wanted to be certain you folks saw it is a problem, and I'm guessing others will have the same problem when their Firefox updates tonight and tomorrow. 

Here's my log info.  I can send the other more comprehensive logs you folks like (although they are not something I'd want to post in a public forum), but this may have been unnecessary because this is a known issue?



-Log Details-
Protection Event Date: 1/29/18
Protection Event Time: 9:34 PM
Log File: 26ac50dc-0566-11e8-bc65-704d7b285f80.json
Administrator: Yes

-Software Information-
Components Version: 1.0.262
Update Package Version: 1.0.3817
License: Premium

-System Information-
OS: Windows 10 (Build 16299.192)
CPU: x64
File System: NTFS
User: System

-Exploit Details-
File: 0
(No malicious items detected)

Exploit: 1
Malware.Exploit.Agent.Generic, , Blocked, [0], [392684],0.0.0

-Exploit Data-
Affected Application: Mozilla Firefox (and add-ons)
Protection Layer: Protection Against OS Security Bypass
Protection Technique: Exploit ROP gadget attack blocked
File Name:


Link to post
Share on other sites

@Cain I have Firefox 58.0.1 running just fine with the latest version of Malwarebytes with the default settings. If you have adjusted/modified the default anti-exploit settings for web browsers in Malwarebytes, then there is a chance an issue may occur.

On top of that, recent builds of Firefox have had issues and conflicts with other security software that provide exploit protection features. In fact, the release notes of 58.0.1 call out that it includes a specific fix to resolve some of the recent conflicts Firefox has introduced.

My guess is that these things combined are the root causes of your issue.

Edited by AlexSmith
Link to post
Share on other sites

1 hour ago, seaquest said:

disabling that feature may solve the issue but is it right to do so?

Yes it is because it is the current default settings that the rest of us are using. For some reason (which is being investigated) you did not get the change of settings in a update.

Link to post
Share on other sites

  • Staff

Hi All,

The default settings that we provide as part of Anti-Exploit is after a careful deliberation by our security experts to provide optimum security while minimizing false positives. It is the recommended solution for users.

However, there are some settings that we offer which provide additional security but might not be compatible with a few 3rd party products. One such is RET ROP Gadget Detection. By default, we do not recommend turning it on. But by no means turning it off will reduce users' security. 

If you are using Firefox 58, Please use default recommended settings as in the below screenshot.

Thank you.


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.