Endpoint Vulnerability

Memory corruption during failed plugin initialization

Description

Mozilla developer Robert Kaiser (Kairo) reported that a race condition when initialization of a plugin fails led to a potentially exploitable use-after-free vulnerability.

Affected Products

Firefox

References

CVE-2015-2706,