CVE-2016-1961

2016-03-13T18:59:00
ID CVE-2016-1961
Type cve
Reporter cve@mitre.org
Modified 2019-12-27T16:08:00

Description

Use-after-free vulnerability in the nsHTMLDocument::SetBody function in dom/html/nsHTMLDocument.cpp in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code by leveraging mishandling of a root element, aka ZDI-CAN-3574. <a href="http://cwe.mitre.org/data/definitions/416.html">CWE-416: Use After Free</a>