Vulnerabilities

CVE-2015-4492

by Fred · 15/08/2015

Use-after-free vulnerability in the XMLHttpRequest::Open implementation in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 might allow remote attackers to execute arbitrary code via a SharedWorker object that makes recursive calls to the open method of an XMLHttpRequest object.

Date published : 2015-08-15

http://www.securityfocus.com/bid/76297

http://www.mozilla.org/security/announce/2015/mfsa2015-92.html

Similar

Tags: Cybersecurity Alert