KLA11001
Use-after-free vulnerability in Mozilla Firefox and Mozilla Firefox ESR
Updated: 07/05/2018
CVSS
?
6.8
Detect date
?
05/05/2017
Severity
?
High
Description

Use-after-free vulnerability was found in Mozilla Firefox and Mozilla Firefox ESR. By exploiting this vulnerability malicious users can cause a denial of service. This vulnerability can be exploited remotely via a Buffer11 API calls within the ANGLE graphics library, used for WebGL content.

Affected products

Mozilla Firefox ESR versions earlier than 52.1.1
Mozilla Firefox versions earlier than 53.0.2

Solution

Update to latest version
Download Firefox ESR
Download Firefox

Original advisories

MFSA 2017-14

Impacts
?
DoS 
[?]
Related products
Mozilla Firefox ESR
Mozilla Firefox
CVE-IDS
?

CVE-2017-5031