CVE-2017-5375

Summary

JIT code allocation can allow for a bypass of ASLR and DEP protections leading to potential memory corruption attacks. This vulnerability affects Thunderbird < 45.7, Firefox ESR < 45.7, and Firefox < 51.

Affected Software

VendorProductVersion RangeStatus
MozillaThunderbirdunspecified < 45.7affected
MozillaFirefox ESRunspecified < 45.7affected
MozillaFirefoxunspecified < 51affected

Weaknesses

  • Excessive JIT code allocation allows bypass of ASLR and DEP

ADP Enrichment

CVE Program Container

Additional References

References