QwikSec

Security Database

CVE

CWE

Training

CVE-2015-4510

Published: Sep 24, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

Race condition in the WorkerPrivate::NotifyFeatures function in Mozilla Firefox before 41.0 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free and application crash) by leveraging improper interaction between shared workers and the IndexedDB implementation.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

openSUSE-SU-2015:1681

vendor-advisory

x_refsource_SUSE

http://www.mozilla.org/security/announce/2015/mfsa2015-104.html

x_refsource_CONFIRM

vendor-advisory

x_refsource_UBUNTU

http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

x_refsource_CONFIRM

http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

x_refsource_CONFIRM

vendor-advisory

x_refsource_UBUNTU

vdb-entry

x_refsource_BID

vendor-advisory

x_refsource_UBUNTU

vdb-entry

x_refsource_SECTRACK

https://bugzilla.mozilla.org/show_bug.cgi?id=1200004

x_refsource_CONFIRM

openSUSE-SU-2015:1658

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_UBUNTU

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.