Use-after-free vulnerability in Mozilla Firefox allows remote code execution

Use-after-free vulnerability in Mozilla Firefox allows remote code execution

CVE-2016-5255 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Use-after-free vulnerability in the js::PreliminaryObjectArray::sweep function in Mozilla Firefox before 48.0 allows remote attackers to execute arbitrary code via crafted JavaScript that is mishandled during incremental garbage collection.

Learn more about our Cis Benchmark Audit For Mozilla Firefox.