- These vulnerabilities exist in Mozilla Firefox due to abuse of XSLT error handling, cross-origin iframe referencing an XSLT document… that results in a use-after-free error and memory safety bugs within the browser engine [CERT-IN].
- A remote attacker could exploit these vulnerabilities by convincing a victim to open a specially-crafted web request.
[Via]
