Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4, when a Java
plugin is enabled, allow remote attackers to cause a denial of service
(incorrect garbage collection and application crash) or possibly execute
arbitrary code via a crafted Java applet that deallocates an in-use
JavaScript wrapper.