cve/CVE-2020-26950.md at eda58812c5773678e9432b65209fee245db925e7

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-07 19:16:22 +00:00

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

In certain circumstances, the MCallGetProperty opcode can be emitted with unmet assumptions resulting in an exploitable use-after-free condition. This vulnerability affects Firefox < 82.0.3, Firefox ESR < 78.4.1, and Thunderbird < 78.4.2.

POC

Reference

http://packetstormsecurity.com/files/166175/Firefox-MCallGetProperty-Write-Side-Effects-Use-After-Free.html
http://packetstormsecurity.com/files/166175/Firefox-MCallGetProperty-Write-Side-Effects-Use-After-Free.html
https://bugzilla.mozilla.org/show_bug.cgi?id=1675905
https://bugzilla.mozilla.org/show_bug.cgi?id=1675905

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/cookiengineer/bananaphone

1.3 KiB Raw Blame History

CVE-2020-26950

Description

POC

Reference

Github

1.3 KiB

Raw Blame History