Описание
Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service and obtain sensitive information.
- A buffer overflow vulnerability in Direct 3D 9 component can be exploited remotely to cause denial of service;
- A vulnerability in IndexedDB component can be exploited remotely to obtain sensitive information;
Technical details
Vulnerability(1) is related to Firefox and Firefox ESR for Windows OS, other operating systems are unaffected.
Vulnerability(2) is related to Mozilla Firefox ESR
Первичный источник обнаружения
Связанные продукты
Список CVE
- CVE-2017-7843 warning
- CVE-2017-7845 critical
Список KB
Смотрите также
Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com
Нашли неточность в описании этой уязвимости? Дайте нам знать!