Use-after-free vulnerability in the CanonicalizeXPCOMParticipant function in Mozilla Firefox before 39.0 and Firefox ESR 31.x before 31.8 and 38.x before 38.1 allows remote attackers to execute arbitrary code via vectors involving attachment of an XMLHttpRequest object to a shared worker.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mozilla
Published: 2015-07-06T01:00:00
Updated: 2024-08-06T05:24:38.437Z
Reserved: 2015-03-25T00:00:00
Link: CVE-2015-2722
Vulnrichment
No data.
NVD
Status : Modified
Published: 2015-07-06T02:00:54.953
Modified: 2023-09-12T14:55:31.563
Link: CVE-2015-2722
Redhat