Mozilla » Firefox Esr : Security Vulnerabilities, CVEs, Published In December 2015 (Memory corruption)
Use-after-free vulnerability in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allows remote attackers to execute arbitrary code by triggering attempted use of a data channel that has been closed by a WebRTC function.
Max CVSS
7.5
EPSS Score
5.66%
Published
2015-12-16
Updated
2018-10-30
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Max CVSS
10.0
EPSS Score
4.75%
Published
2015-12-16
Updated
2018-10-30
2 vulnerabilities found