CVE-2017-5416

CVE-2017-5416

EPSS 1.8%

In certain circumstances a networking event listener can be prematurely released. This appears to result in a null dereference in practice. This vulnerability affects Firefox < 52 and Thunderbird < 52.

Affected products

Mozilla · Firefox Mozilla · Thunderbird

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1328121 https://www.mozilla.org/security/advisories/mfsa2017-05/https://www.mozilla.org/security/advisories/mfsa2017-09/http://www.securityfocus.com/bid/96692 http://www.securitytracker.com/id/1037966