CVE-2015-4492 | Vulnerability Database | Aqua Security

Use-after-free vulnerability in the XMLHttpRequest::Open implementation in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 might allow remote attackers to execute arbitrary code via a SharedWorker object that makes recursive calls to the open method of an XMLHttpRequest object.

Affected Software

Name	Vendor	Start Version	End Version
Solaris	Oracle	11.3 (including)	11.3 (including)
Red Hat Enterprise Linux 5	RedHat	firefox-0:38.2.0-4.el5_11	*
Red Hat Enterprise Linux 6	RedHat	firefox-0:38.2.0-4.el6_7	*
Red Hat Enterprise Linux 7	RedHat	firefox-0:38.2.0-4.ael7b_1	*
Firefox	Ubuntu	devel	*
Firefox	Ubuntu	precise	*
Firefox	Ubuntu	trusty	*
Firefox	Ubuntu	upstream	*
Firefox	Ubuntu	vivid	*

References

http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00014.html
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00015.html
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00021.html
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00016.html
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00025.html
http://lists.opensuse.org/opensuse-updates/2015-08/msg00030.html
http://lists.opensuse.org/opensuse-updates/2015-08/msg00031.html
http://rhn.redhat.com/errata/RHSA-2015-1586.html
http://www.debian.org/security/2015/dsa-3333
http://www.mozilla.org/security/announce/2015/mfsa2015-92.html
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
http://www.securityfocus.com/bid/76297
http://www.securitytracker.com/id/1033247
http://www.ubuntu.com/usn/USN-2702-1
http://www.ubuntu.com/usn/USN-2702-2
http://www.ubuntu.com/usn/USN-2702-3
https://bugzilla.mozilla.org/show_bug.cgi?id=1185820
https://security.gentoo.org/glsa/201605-06

NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-4492
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html