Windows Stack Memory Data Leakage Vulnerability in Firefox < 55

Windows Stack Memory Data Leakage Vulnerability in Firefox < 55

CVE-2017-7790 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

On Windows systems, if non-null-terminated strings are copied into the crash reporter for some specific registry keys, stack memory data can be copied until a null is found. This can potentially contain private data from the local system. Note: This attack only affects Windows operating systems. Other operating systems are not affected. This vulnerability affects Firefox < 55.

Learn more about our Cis Benchmark Audit For Operating Systems.