Use-after-free vulnerability in the CanonicalizeXPCOMParticipant function in Mozilla Firefox prior to 39.0 and Firefox ESR 31.x prior to 31.8 and 38.x prior to 38.1 allows remote malicious users to execute arbitrary code via vectors involving attachment of an XMLHttpRequest object to a dedicated worker.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox |
||
oracle solaris 11.3 |
||
mozilla firefox esr 31.5.1 |
||
mozilla firefox esr 31.5 |
||
mozilla firefox esr 31.0 |
||
mozilla firefox esr 31.7.0 |
||
mozilla firefox esr 31.6.0 |
||
mozilla firefox esr 31.3 |
||
mozilla firefox esr 31.2 |
||
mozilla firefox esr 38.0 |
||
mozilla firefox esr 31.4 |
||
mozilla firefox esr 31.3.0 |
||
mozilla firefox esr 31.5.3 |
||
mozilla firefox esr 31.5.2 |
||
mozilla firefox esr 31.1.1 |
||
mozilla firefox esr 31.1.0 |
||
mozilla firefox esr 31.1 |
||
novell suse linux enterprise desktop 12.0 |
||
novell suse linux enterprise desktop 11 |
||
novell suse linux enterprise server 12.0 |