Use-after-free vulnerability in the CanonicalizeXPCOMParticipant function in Mozilla Firefox before 39.0 and Firefox ESR 31.x before 31.8 and 38.x before 38.1 allows remote attackers to execute arbitrary code via vectors involving attachment of an XMLHttpRequest object to a dedicated worker.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mozilla
Published: 2015-07-06T01:00:00
Updated: 2024-08-06T05:24:38.697Z
Reserved: 2015-03-25T00:00:00
Link: CVE-2015-2733
Vulnrichment
No data.
NVD
Status : Modified
Published: 2015-07-06T02:01:02.937
Modified: 2016-12-28T02:59:08.947
Link: CVE-2015-2733
Redhat