A use-after-free vulnerability can occur in WebSockets when the object holding the connection is freed before the disconnection operation is finished. This results in an exploitable crash. This vulnerability affects Thunderbird < 52.3, Firefox ESR < 52.3, and Firefox < 55.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mozilla

Published: 2018-06-11T21:00:00

Updated: 2024-08-05T16:12:28.512Z

Reserved: 2017-04-12T00:00:00

Link: CVE-2017-7800

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-06-11T21:29:09.780

Modified: 2024-11-21T03:32:41.257

Link: CVE-2017-7800

cve-icon Redhat

Severity : Critical

Publid Date: 2017-08-08T00:00:00Z

Links: CVE-2017-7800 - Bugzilla