CVE-2016-5255

Publication date

2016-08-05 01:00:00

Family

mozilla

State

PUBLISHED

Description

Use-after-free vulnerability in the js::PreliminaryObjectArray::sweep function in Mozilla Firefox before 48.0 allows remote attackers to execute arbitrary code via crafted JavaScript that is mishandled during incremental garbage collection.