Remote Code Execution Vulnerability in SavedStacks Class in Mozilla Firefox

Remote Code Execution Vulnerability in SavedStacks Class in Mozilla Firefox

CVE-2015-4507 · MEDIUM Severity

AV:N/AC:H/AU:N/C:P/I:P/A:P

The SavedStacks class in the JavaScript implementation in Mozilla Firefox before 41.0, when the Debugger API is enabled, allows remote attackers to cause a denial of service (getSlotRef assertion failure and application exit) or possibly execute arbitrary code via a crafted web site.

Learn more about our Web App Pen Testing.