Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com

CVE-2015-7200

Description

The CryptoKey interface implementation in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 lacks status checking, which allows attackers to have an unspecified impact via vectors related to a cryptographic key.

POC

Reference

- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

- http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

- http://www.ubuntu.com/usn/USN-2819-1

Github

No PoCs found on GitHub currently.