The IndexedDatabaseManager class in the IndexedDB implementation in Mozilla Firefox before 39.0 and Firefox ESR 31.x before 31.8 and 38.x before 38.1 misinterprets an unspecified IDBDatabase field as a pointer, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors, related to a "type confusion" issue.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mozilla
Published: 2015-07-06T01:00:00
Updated: 2024-08-06T05:24:38.406Z
Reserved: 2015-03-25T00:00:00
Link: CVE-2015-2728
Vulnrichment
No data.
NVD
Status : Modified
Published: 2015-07-06T02:00:59.423
Modified: 2016-12-28T02:59:08.543
Link: CVE-2015-2728
Redhat