Use-after-free vulnerability in nsDocLoader::OnProgress function in Mozilla Firefox and Thunderbird

Use-after-free vulnerability in nsDocLoader::OnProgress function in Mozilla Firefox and Thunderbird

CVE-2014-1555 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Use-after-free vulnerability in the nsDocLoader::OnProgress function in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7 allows remote attackers to execute arbitrary code via vectors that trigger a FireOnStateChange event.

Learn more about our Cis Benchmark Audit For Mozilla Firefox.