Use-after-free while manipulating the "navigator" object within WebVR. Note: WebVR is not currently enabled by default. This vulnerability affects Firefox < 50.1.
Mozilla Foundation Security Advisory 2016-94
Security vulnerabilities fixed in Firefox 501
Announced
December 13, 2016
Impact
critical
Products
Firefox
Fixed in
Firefox 501
...