Integer overflow in the WebSocketChannel class in the WebSockets subsystem in Mozilla Firefox prior to 48.0 and Firefox ESR < 45.4 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via crafted packets that trigger incorrect buffer-resize operations during buffering.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla firefox |