Vulnerabilities

CVE-2015-0828

by Fred · 25/02/2015

Double free vulnerability in the nsXMLHttpRequest::GetResponse function in Mozilla Firefox before 36.0, when a nonstandard memory allocator is used, allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via crafted JavaScript code that makes an XMLHttpRequest call with zero bytes of data.

Date published : 2015-02-25

http://www.securityfocus.com/bid/72744

http://www.mozilla.org/security/announce/2015/mfsa2015-18.html

Similar

Tags: Cybersecurity Alert