CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
EPSS
Percentile
87.8%
The SavedStacks class in the JavaScript implementation in Mozilla Firefox
before 41.0, when the Debugger API is enabled, allows remote attackers to
cause a denial of service (getSlotRef assertion failure and application
exit) or possibly execute arbitrary code via a crafted web site.