Memory Corruption Vulnerability in XULContentSinkImpl::AddText Function in Mozilla Firefox

Memory Corruption Vulnerability in XULContentSinkImpl::AddText Function in Mozilla Firefox

CVE-2015-7175 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The XULContentSinkImpl::AddText function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 might allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via unknown vectors, related to an "overflow."

Learn more about our Cis Benchmark Audit For Mozilla Firefox.